CVE-2007-5636

Nortel IP Softphone 2050 - Buffer Overflow via RTCP Port Flood

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-5636. PoCs published by Cyrill Brunschwiler.

AI-analyzed exploit summary The provided Java code is a functional proof-of-concept exploit for CVE-2007-5636, targeting a buffer overflow vulnerability in Nortel Networks UNIStim IP Softphone. It sends maliciously crafted UDP packets to trigger the overflow, potentially leading to remote code execution or denial-of-service.

Description

Buffer overflow in the Nortel UNIStim IP Softphone 2050 allows remote attackers to cause a denial of service (application abort) and possibly execute arbitrary code via a flood of invalid characters to the RTCP port (5678/udp) that triggers a Windows error message, aka "extraneous messaging."

Exploits (1)

exploitdb WORKING POC VERIFIED

by Cyrill Brunschwiler · javaremotemultiple

https://www.exploit-db.com/exploits/30678

View Code ZIP pw:eip

The provided Java code is a functional proof-of-concept exploit for CVE-2007-5636, targeting a buffer overflow vulnerability in Nortel Networks UNIStim IP Softphone. It sends maliciously crafted UDP packets to trigger the overflow, potentially leading to remote code execution or denial-of-service.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Nortel Networks UNIStim IP Softphone

No auth needed

Prerequisites: Network access to the target system · Target system running vulnerable Nortel UNIStim IP Softphone

MITRE ATT&CK