SIP.Header.Remote.XSS
Description
This indicates an attempt to exploit a Cross Site Scripting (XSS) vulnerability in the Session Initiation Protocol (SIP), a VoIP signaling protocol.
The vulnerability is caused by the protocol not properly filtering some header fields that come from the SIP message. An attacker may exploit this to perform XSS injection.
Affected Products
Linksys SPA-941 (Version 5.1.8)
Impact
System compromise: Cross site scripting.
Recommended Actions
Currently we are not aware of any officially released patch or update.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |