Cisco 7940 SIP Phone INVITE Message Remote Denial of Service Vulnerability

Cisco 7940 SIP Phone INVITE Message Remote Denial of Service Vulnerability

Cisco 7940 SIP phones are prone to a denial-of-service vulnerability because the device fails to handle specially crafted SIP INVITE messages.

Exploiting this issue allows remote attackers to cause the device to fail to respond to further call requests and to potentially crash, denying service to legitimate users.

This issue affects version P0S3-08-7-00 of Cisco 7940 SIP phones; other versions may also be affected.