CVE-2009-3704 Information

Description

ZoIPer 2.22 and possibly other versions before 2.24 Library 5324 allows remote attackers to cause a denial of service (crash) via a SIP INVITE request with an empty Call-Info header.

Reference

http://packetstormsecurity.org/0910-exploits/zoiper_dos.py.txt http://secunia.com/advisories/37015 https://exchange.xforce.ibmcloud.com/vulnerabilities/53792