CVE-2007-1542

Cisco IP Phone 7940 and 7960 - Denial of Service via SIP INVITE Remote-Party-ID Field

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1542. PoCs published by MADYNES.

AI-analyzed exploit summary This Perl script exploits a DoS vulnerability in Cisco 7940/7960 phones by sending a malformed SIP INVITE message with a crafted Remote-Party-ID field, causing the device to reboot immediately.

Description

Unspecified vulnerability in the Cisco IP Phone 7940 and 7960 running firmware before POS8-6-0 allows remote attackers to cause a denial of service via the Remote-Party-ID sipURI field in a SIP INVITE request. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by MADYNES · perldoshardware

https://www.exploit-db.com/exploits/3526

View Code ZIP pw:eip

This Perl script exploits a DoS vulnerability in Cisco 7940/7960 phones by sending a malformed SIP INVITE message with a crafted Remote-Party-ID field, causing the device to reboot immediately.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Cisco 7940/7960 running firmware P0S3-07-4-00

No auth needed

Prerequisites: Network access to the target device · UDP port accessibility

MITRE ATT&CK