This script is Copyright (C) 2006-2011 Tenable Network Security, Inc.
The remote SIP client is prone to a buffer overflow attack.
The version of SoftPhone installed on the remote host reportedly fails
to properly handle SIP packets with long 'a=' lines in the SDP data.
An unauthenticated, remote attacker may be able to exploit this flaw to
overflow a buffer and execute arbitrary code on the remote host.
See also :
Upgrade to eStara SoftPhone version 220.127.116.11 or later.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 7.1
Public Exploit Available : true