CVE-2007-3765: CVE-2007-3765

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2007-3765

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The STUN implementation in Asterisk 1.4.x before 1.4.8, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote attackers to cause a denial of service (crash) via a crafted STUN length attribute in a STUN packet sent on an RTP port.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Asterisk RTP栈拒绝服务攻击漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Asterisk是开放源码的软件PBX，支持各种VoIP协议和设备。 Asterisk在RTP栈的STUN实现中存在拒绝服务漏洞。如果Asterisk在活动的RTP端口上接收到了特制的STUN报文的话，指针就可能超过可访问的内存。负责解析入站STUN报文的代码无法确认表示STUN属性的长度和STUN属性头大小是否超过了可用的数据，因此数据指针可能超过可访问的内存，导致崩溃。成功攻击要求启用了chan_sip、chan_gtalk、chan_jingle、chan_h323、chan_mgcp或chan_s

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2007-3765

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2007-3765

Please Login to view more intelligence information

http://ftp.digium.com/pub/asa/ASA-2007-017.pdfx_refsource_CONFIRM
http://www.securityfocus.com/bid/24950vdb-entryx_refsource_BID
http://secunia.com/advisories/26099third-party-advisoryx_refsource_SECUNIA
http://www.securitytracker.com/id?1018407vdb-entryx_refsource_SECTRACK
http://www.vupen.com/english/advisories/2007/2563vdb-entryx_refsource_VUPEN
https://exchange.xforce.ibmcloud.com/vulnerabilities/35480vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2007-3765

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2007-3765

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2007-3765

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2007-3765

III. Intelligence Information for CVE-2007-3765

IV. Related Vulnerabilities

V. Comments for CVE-2007-3765

Leave a comment