Vulnerability Name:

CVE-2007-3319 (CCN-34972)

Assigned:2007-06-19
Published:2007-06-19
Updated:2017-07-29
Summary:The Avaya 4602SW IP Phone (Model 4602D02A) with 2.2.2 and earlier SIP firmware does not use the cnonce parameter in the Authorization header of SIP requests during MD5 digest authentication, which allows remote attackers to conduct man-in-the-middle attacks and hijack or intercept communications.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
6.0 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
4.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-Other
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2007-3319

Source: OSVDB
Type: UNKNOWN
38115

Source: CCN
Type: SA25747
Avaya 4602SW SIP Phone Multiple Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
25747

Source: CONFIRM
Type: Vendor Advisory
http://support.avaya.com/elmodocs2/security/ASA-2007-263.htm

Source: CCN
Type: ASA-2007-263
Vulnerabilities in Avaya 4602SW SIP Phone (VIPER-2007-046 VIPER-2007-047 VIPER-2007-048 VIPER-2007-049)

Source: CCN
Type: Avaya Web site
VPNRemote Client

Source: CCN
Type: OSVDB ID: 38115
Avaya 4602SW IP Phone SIP Authorization MiTM Weakness

Source: BID
Type: UNKNOWN
24539

Source: CCN
Type: BID-24539
Avaya 4602SW SIP Phone Cnonce Parameter Authentication Spoofing Vulnerability

Source: CCN
Type: VIPER-2007-046
Avaya 4602SW SIP Phone vulnerable to server impersonation

Source: MISC
Type: Vendor Advisory
http://www.sipera.com/index.php?action=resources,threat_advisory&tid=299&

Source: XF
Type: UNKNOWN
avaya-cnonce-call-hijacking(34972)

Source: XF
Type: UNKNOWN
avaya-cnonce-call-hijacking(34972)

Vulnerable Configuration:Configuration 1:
  • cpe:/h:avaya:4602sw_ip_phone:r2.2:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    avaya 4602sw ip phone r2.2