TITLE:
eStara SoftPhone SIP Packet Handling Denial of Service

SECUNIA ADVISORY ID:
SA18872

VERIFY ADVISORY:
http://secunia.com/advisories/18872/

CRITICAL:
Moderately critical

IMPACT:
DoS

WHERE:
>From remote

SOFTWARE:
eStara SoftPhone 3.x
http://secunia.com/product/6784/

DESCRIPTION:
ZwelL has discovered some vulnerabilities in eStara SoftPhone, which
can be exploited by malicious people to cause a DoS (Denial of
Service).

The vulnerabilities are caused due to errors within the handling of
certain SIP packets sent to 5060/udp. This can be exploited to crash
the SoftPhone client or cause it to stop responding via specially
crafted SIP packets containing a negative value in the "Expires"
header, or containing a "Content-Length" header with a value of more
than 9 characters, or via SIP packets with SDP data containing format
specifiers.

The vulnerabilities have been confirmed in version 3.0.1.47. Other
versions may also be affected.

SOLUTION:
Restrict use to within trusted networks only.

PROVIDED AND/OR DISCOVERED BY:
ZwelL

ORIGINAL ADVISORY:
http://www.nosec.org/web/?q=node/12

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

----------------------------------------------------------------------