NCH Software Office Intercom SIP Invite Remote Denial Of Service Vulnerability Network Vulnerability

Summary

NCH Software Office Intercom is prone to a remote denial-of-service vulnerability because it fails to properly handle specially crafted SIP INVITE requests. Exploiting this issue allows remote attackers to cause a denial-of- service due to a NULL-pointer dereference. Due to the nature of this issue, remote code execution may be possible this has not been confirmed. Office Intercom 5.20 is vulnerable other versions may also be affected.

References

http://www.nch.com.au/oi/
https://www.securityfocus.com/bid/45049

Updated on 2015-03-25

Severity

Classification

CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

ClamAV Remote Denial of Service Vulnerability
ejabberd 'mod_pubsub' Module Denial of Service Vulnerability
Beckhoff TwinCAT 'TCATSysSrv.exe' Network Packet Denial of Service Vulnerability
Apple Safari Denial of Service Vulnerability (Win) - Apr09
Apple iTunes Multiple Vulnerabilities

NCH Software Office Intercom SIP Invite Remote Denial of Service Vulnerability

Take action and discover your vulnerabilities