CVE-2007-5361
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-5361
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The Communication Server in Alcatel-Lucent OmniPCX Enterprise 7.1 and earlier caches an IP address during a TFTP request from an IP Touch phone, and uses this IP address as the destination for all subsequent VoIP packets to this phone, which allows remote attackers to cause a denial of service (loss of audio) or intercept voice communications via a crafted TFTP request containing the phone's MAC address in the filename.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
OmniPCX Enterprise音频重新路由信息泄漏及拒绝服务漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
OmniPCX Enterprise是企业级的集成通讯解决方案。 OmniPCX Enterprise在处理畸形TFTP请求时存在漏洞,远程攻击者可能利用此漏洞导致设备工作不正常。 在引导时,OmniPCX Enterprise服务器的IP Touch电话会使用TFTP协议下载有关部署的配置信息。如果恶意用户能够向服务器发送恶意的TFTP请求,在文件名中包含受害用户VoIP电话的MAC地址,就可以将呼叫的音频流重新路由到自己计算机的IP地址。这时尽管VoIP电话仍可进行呼叫或应答,但无法听到通讯另一端的任
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-5361
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-5361
请登录查看更多情报信息。
- http://www1.alcatel-lucent.com/psirt/statements/2007004/IPTouchDOS.pdfx_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2007-5361
Same Patch Batch · n/a · 2007-11-20 · 45 CVEs total
| CVE-2007-6052 | IBM DB2 UDB 向量集合 拒绝服务攻击漏洞 | |
| CVE-2007-6055 | Novell Teaming用户枚举和跨站脚本漏洞 | |
| CVE-2007-6054 | Aruba MC-800 Mobility Controller 管理界面登录页面跨站脚本攻击漏洞 | |
| CVE-2007-6056 | AIDA Web Frame.HTML 权限许可和访问控制漏洞 | |
| CVE-2007-6059 | Sun JavaMail SQLNestedException 拒绝服务攻击漏洞 | |
| CVE-2007-6060 | AhnLab V3 ZIP文件解析内存破坏漏洞 | |
| CVE-2003-0857 | iptables中(1)ipq_read和(2) ipulog_read函数服务拒绝漏洞 | |
| CVE-2007-6061 | Audacity 后置链接漏洞 | |
| CVE-2007-6062 | ngIRCd irc-channel.c 拒绝服务漏洞 | |
| CVE-2007-6058 | ProfileCMS index.php多个参数 SQL注入漏洞 | |
| CVE-2007-6053 | IBM DB2 UD 内存崩溃漏洞 | |
| CVE-2007-6051 | IBM DB2 UDB DB2ADMNS/DB2USERS 访问控制漏洞 | |
| CVE-2007-6050 | IBM DB2 UD DB2LICD 未明漏洞 | |
| CVE-2007-6049 | IBM DB2 UDB SSL LOAD GSKIT 未明漏洞 | |
| CVE-2007-6048 | IBM DB2 UDB DB2NODES.CFG 权限许可和访问控制漏洞 | |
| CVE-2007-6047 | IBM DB2 DB2DART工具 权限提升漏洞 | |
| CVE-2007-6046 | IBM DB2 UDB 未明setuid程序 未明漏洞 | |
| CVE-2007-6045 | IBM DB2 UDB DB2WATCH/DB2FREEZE 未明漏洞 | |
| CVE-2007-6044 | IBM WebSphere MQ 多个未明远程内存崩溃漏洞 | |
| CVE-2007-6043 | Microsoft Windows不安全随机数生成器信息泄露漏洞 |
Showing top 20 of 45 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2007-5361
No comments yet