CVE-2007-5583

Cisco IP Phone 7940 P0S3-08-7-00 - Denial of Service via SIP INVITE Request-URI

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-5583. PoCs published by MADYNES.

AI-analyzed exploit summary This exploit targets a SIP DoS vulnerability (CVE-2007-5583) by flooding the target with malformed INVITE requests, causing resource exhaustion. It uses UDP to send crafted SIP messages and handles responses to maintain a loop of requests.

Description

Cisco IP Phone 7940 with firmware P0S3-08-7-00 allows remote attackers to cause a denial of service ("486 Busy" responses or device reboot) via a sequence of SIP INVITE transactions in which the Request-URI lacks a user name, a different vulnerability than CVE-2007-4459.

Exploits (1)

exploitdb WORKING POC VERIFIED

by MADYNES · perldoshardware

https://www.exploit-db.com/exploits/4692

View Code ZIP pw:eip

This exploit targets a SIP DoS vulnerability (CVE-2007-5583) by flooding the target with malformed INVITE requests, causing resource exhaustion. It uses UDP to send crafted SIP messages and handles responses to maintain a loop of requests.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: SIP implementations (e.g., Asterisk, other SIP servers)

No auth needed

Prerequisites: Network access to target SIP server · UDP port 5060 reachable

MITRE ATT&CK