CVE-2012-1008 Information

Description

OfficeSIP Server 3.1 allows remote attackers to cause a denial of service (daemon crash) via a crafted To header in a SIP INVITE message.

Reference

http://secpod.org/advisories/SecPod_Exploit_OfficeSIP_Server_DOS_Vuln.txt http://secpod.org/blog/?p=461 http://secpod.org/exploits/SecPod_Exploit_OfficeSIP_Server_DOS.py http://www.exploit-db.com/exploits/18453