Signature Detail
Short Name |
HTTP:LOCALHOST-ON-INTERNET |
|---|---|
Severity |
Medium |
Recommended |
No |
Category |
HTTP |
Keywords |
Localhost Host Header in Trans-Internet Request |
Release Date |
2010/09/20 |
Update Number |
1776 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Localhost Host Header in Trans-Internet Request
This signature detects attempts to exploit a known vulnerability against several HTTP-based Web Interfaces for network devices (such as VOIP Phones). An attacker can send a crafted message to the server allowing them to bypass security restrictions and reconfigure or make arbitrary use of the device.
Extended Description
The web interface on snom VoIP phones is prone to an authentication-bypass vulnerability because it fails to properly verify HTTP requests. Successful exploits may allow attackers to bypass security restrictions and reconfigure the phones or make arbitrary use of the phones. snom VoIP phones with firmware prior to 6.5.20, 7.1.39 and 7.3.14 are vulnerable.
Affected Products
- snom technology Snom300 6.5.17
- snom technology Snom300 6.5.18
- snom technology Snom300 7.1.30
- snom technology Snom300 7.1.35
- snom technology Snom320 6.5.17
- snom technology Snom320 6.5.18
- snom technology Snom320 7.1.30
- snom technology Snom320 7.1.35
- snom technology Snom 320 SIP Phone 3.2.5 linux
- snom technology Snom360 SIP 6.5.17
- snom technology Snom360 SIP 6.5.18
- snom technology Snom360 SIP 7.1.30
- snom technology Snom360 SIP 7.1.35
- snom technology Snom370 6.5.17
- snom technology Snom370 6.5.18
- snom technology Snom370 7.1.30
- snom technology Snom370 7.1.35
- snom technology Snom820 6.5.17
- snom technology Snom820 6.5.18
- snom technology Snom820 7.1.30
- snom technology Snom820 7.1.35
References
- BugTraq: 43130
- CVE: CVE-2009-1048
- URL: http://www.snom.com/en/home/
- URL: http://www.csnc.ch/misc/files/advisories/cve-2009-1048.txt