CVE-2007-1590

Grandstream BudgeTone 200 - Denial of Service via SIP WWW-Authenticate Header

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1590. PoCs published by MADYNES.

AI-analyzed exploit summary This exploit sends a crafted SIP INVITE message with a malformed 'WWW-Authenticate' header to trigger a denial-of-service (DoS) condition in Grandstream Budge Tone-200 IP Phones. The vulnerability is exploited via a UDP packet containing a specially crafted 'Digest domain' field.

Description

The Grandstream BudgeTone 200 IP phone, with program 1.1.1.14 and bootloader 1.1.1.5, allows remote attackers to cause a denial of service (device crash) via SIP (1) INVITE, (2) CANCEL, or unspecified other messages with a WWW-Authenticate header containing a crafted Digest domain.

Exploits (1)

exploitdb WORKING POC VERIFIED

by MADYNES · perldoshardware

https://www.exploit-db.com/exploits/3535

View Code ZIP pw:eip

This exploit sends a crafted SIP INVITE message with a malformed 'WWW-Authenticate' header to trigger a denial-of-service (DoS) condition in Grandstream Budge Tone-200 IP Phones. The vulnerability is exploited via a UDP packet containing a specially crafted 'Digest domain' field.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Grandstream Budge Tone-200 IP Phone (Program-- 1.1.1.14, Bootloader-- 1.1.1.5)

No auth needed

Prerequisites: Network access to the target device · UDP port 5060 (SIP) reachable

MITRE ATT&CK