CVE-2007-3368 Information

Description

Buffer overflow in the HTTP server on the Polycom SoundPoint IP 601 SIP phone with BootROM 3.0.x+ allows remote attackers to cause a denial of service (device reboot) via a malformed CGI parameter.

Reference

http://osvdb.org/37611 http://www.polycom.com/common/documents/support/downloads/voice/soundpoint_ip_soundstation_ip_sip_2.1.1_release_notes.pdf http://www.securityfocus.com/bid/24547 http://www.sipera.com/index.php?action=resourcesthreat_advisory&tid=273&