Home / vulnerabilities Secunia Security Advisory 45091
Posted on 08 July 2011
Source : packetstormsecurity.org Link
----------------------------------------------------------------------
The Secunia Vulnerability Intelligence Manager (VIM) enables you to handle vulnerability threats in a simple, cost effective way.
Read more and request a free trial:
http://secunia.com/products/corporate/vim/
----------------------------------------------------------------------
TITLE:
PORTech MV-372 VoIP GSM Gateway Multiple Vulnerabilities
SECUNIA ADVISORY ID:
SA45091
VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/45091/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=45091
RELEASE DATE:
2011-07-07
DISCUSS ADVISORY:
http://secunia.com/advisories/45091/#comments
AVAILABLE ON SITE AND IN CUSTOMER AREA:
* Last Update
* Popularity
* Comments
* Criticality Level
* Impact
* Where
* Solution Status
* Operating System / Software
* CVE Reference(s)
http://secunia.com/advisories/45091/
ONLY AVAILABLE IN CUSTOMER AREA:
* Authentication Level
* Report Reliability
* Secunia PoC
* Secunia Analysis
* Systems Affected
* Approve Distribution
* Remediation Status
* Secunia CVSS Score
* CVSS
https://ca.secunia.com/?page=viewadvisory&vuln_id=45091
ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
* AUTOMATED SCANNING
http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/
DESCRIPTION:
Multiple vulnerabilities have been reported in PORTech MV-372 VoIP
GSM Gateway, which can be exploited by malicious people to disclose
sensitive information, bypass certain security restrictions, and
cause a DoS (Denial of Service).
1) The application does not restrict access to the info.htm script,
which can be exploited to disclose sensitive information e.g. module
description, firmware version, and codec versions.
2) An error within the telnet service can be exploited to crash the
service by providing an overly long password.
3) An error in the authentication mechanism of the administrative web
interface does not properly restrict access to the password change
functionality and can be exploited to change the administrator's
password by sending specially crafted requests to the web interface.
SOLUTION:
Restrict access to trusted hosts only.
PROVIDED AND/OR DISCOVERED BY:
Zsolt Imre
ORIGINAL ADVISORY:
Zsolt Imre:
http://archives.neohapsis.com/archives/fulldisclosure/2011-07/0024.html
OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/
DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/
EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/
EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/
EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/advisories/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
----------------------------------------------------------------------
