TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
849
message to initiate session. After a particular packet sequence is processed by the phone, the phone user cannot operate
the phone unless it is rebooted. The sequence of messages consists of 2 different SIP Dialogs: The first initiates an
INVITE transaction but immediately closes it (in an anticipated manner). While, the second transaction initiates a
normal INVITE transaction that trigger the vulnerability of the target. No remedy is available. Exploit attempts of this
vulnerability detected using a combination of four signatures, this is fourth signature and generate log message.
Signature ID: 34848
Grandstream Budge Tone-200 denial of service vulnerability
Threat Level: Warning
Industry ID: CVE-2007-1590
Bugtraq: 23075
Signature Description: The BudgetTone Series offers a family of affordable, next generation SIP phones that features
excellent audio quality and rich telephony features. The BudgeTone Series supports popular voice codecs and is
designed to be fully interoperable with 3rd party SIP providers. Grandstream BudgeTone 200 Series SIP Phones 1.1.1
14 and prior versions are vulnerable. After sending a crafted INVITE, CANCEL or any other message with a "WWW-
Authenticate" where the "Digest domain" is crafted the device freezes provoking a DoS. patches not available.
Signature ID: 34849
Grandstream Budge Tone-200 denial of service vulnerability
Threat Level: Warning
Industry ID: CVE-2007-1590 Bugtraq: 23075
Signature Description: The BudgetTone Series offers a family of affordable, next generation SIP phones that features
excellent audio quality and rich telephony features. The BudgeTone Series supports popular voice codecs and is
designed to be fully interoperable with 3rd party SIP providers. Grandstream BudgeTone 200 Series SIP Phones 1.1.1
14 and prior versions are vulnerable. After sending a crafted INVITE, CANCEL or any other message with a "WWW-
Authenticate" where the "Digest domain" is crafted the device freezes provoking a DoS. patches not available. No
patch available. This signature detects attacks SIP session on UDP as transport layer, and response packets.
Signature ID: 34850
Grandstream Budge Tone-200 denial of service vulnerability
Threat Level: Warning
Industry ID: CVE-2007-1590 Bugtraq: 23075
Signature Description: The BudgetTone Series offers a family of affordable, next generation SIP phones that features
excellent audio quality and rich telephony features. The BudgeTone Series supports popular voice codecs and is
designed to be fully interoperable with 3rd party SIP providers. Grandstream BudgeTone 200 Series SIP Phones 1.1.1
14 and prior versions are vulnerable. After sending a crafted INVITE, CANCEL or any other message with a "WWW-
Authenticate" where the "Digest domain" is crafted the device freezes provoking a DoS. patches not available. This
signature detects attacks SIP session on TCP as transport layer, and init packets.
Signature ID: 34851
Grandstream Budge Tone-200 denial of service vulnerability
Threat Level: Warning
Industry ID: CVE-2007-1590 Bugtraq: 23075
Signature Description: The BudgetTone Series offers a family of affordable, next generation SIP phones that features
excellent audio quality and rich telephony features. The BudgeTone Series supports popular voice codecs and is
designed to be fully interoperable with 3rd party SIP providers. Grandstream BudgeTone 200 Series SIP Phones
1.1.1.14 and prior versions are vulnerable. After sending a crafted INVITE, CANCEL or any other message with a
"WWW-Authenticate" where the "Digest domain" is crafted the device freezes provoking a DoS. patches not available.