CVE-2007-4382

CounterPath X-Lite 3.0 34025 - Denial of Service via SIP INVITE Message

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-4382. PoCs published by ZwelL.

AI-analyzed exploit summary This exploit targets a denial-of-service (DoS) vulnerability in X-Lite SIP client by sending malformed SIP packets without a Content-Type header. It crafts and sends UDP packets to trigger the vulnerability, causing the client to crash.

Description

CounterPath X-Lite 3.0 34025, and possibly eyeBeam, allows remote attackers to cause a denial of service (device crash) via a SIP INVITE message without a Content-Type header.

Exploits (1)

exploitdb WORKING POC VERIFIED

by ZwelL · cdoswindows

https://www.exploit-db.com/exploits/4285

View Code ZIP pw:eip

This exploit targets a denial-of-service (DoS) vulnerability in X-Lite SIP client by sending malformed SIP packets without a Content-Type header. It crafts and sends UDP packets to trigger the vulnerability, causing the client to crash.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: X-Lite SIP client (version not specified)

No auth needed

Prerequisites: Network access to the target X-Lite SIP client · Target's IP address and SIP port · Attacker's local IP address

MITRE ATT&CK