| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon Jan 16 23:13:47 2006 From: shawnmer at gmail.com (Shawn Merdinger) Subject: MPM HP-180W VoIP wireless desktop phone undocumented port UDP/9090 I disclosed the following issue at ShmooCon 2006 <http://www.shmoocon.org/> during my "VoIP Wireless Phone Security Analysis" presentation. Thanks, --scm =============================================================== DATE: 16 January, 2006 VENDOR: MPM - http://www.mpn.com.tw VENDOR NOTIFIED: 7 December, 2005 PRODUCT: MPM HP-180W VoIP 802.11b Wireless Desktop Phone http://www.mpn.com.tw/index-product-3chinses.html Firmware Version: WE.00.17 VULNERABILITY TITLE: MPM HP-180W VoIP Wireless Desktop Phone undocumented port UDP/9090 DETAILS, IMPACT AND WORKAROUND: MPM HP-180W VoIP Wireless Desktop Phone has an undocumented port and service, UDP/9090, that provides an unauthenticated attacker information about the phone, specifically the phone's MAC address and software version. An attacker can use this to remotely identify the phone and software version. Also, the open port may provide an avenue for DoS. There appears to be no workaround for this issue. CONTACT INFORMATION: Shawn Merdinger shawnmer@...il.com
Powered by blists - more mailing lists