Cisco IP Phone 7800 and 8800 Series are prone to a denial of service vulnerability.
Attackers can exploit this issue to cause a phone to reboot, denying service to legitimate users.
This issue is being tracked by Cisco Bug IDs CSCvc61672.
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
| Bugtraq ID: | 109046 |
| Class: | Input Validation Error |
| CVE: | CVE-2019-1922 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 03 2019 12:00AM |
| Updated: | Jul 03 2019 12:00AM |
| Credit: | Thomas Sabono of xen1thLabs. |
| Vulnerable: | Cisco Unified IP 8831 Conference Phone for Third-Party Call Control 0 Cisco Unified IP 8831 Conference Phone 0 Cisco IP Phone 8865 with Multiplatform Firmware 0 Cisco IP Phone 8865 0 Cisco IP Phone 8861 0 Cisco IP Phone 8851 0 Cisco IP Phone 8845 with Multiplatform Firmware 0 Cisco IP Phone 8845 0 Cisco IP Phone 8841 0 Cisco IP Phone 8811 0 Cisco IP Phone 8800 Series â?? VPN feature 0 Cisco IP Phone 8800 Series 0 Cisco IP Phone 7861 0 Cisco IP Phone 7841 0 Cisco IP Phone 7821 0 Cisco IP Phone 7811 0 Cisco IP Phone 7800 Series with Multiplatform Firmware 0 Cisco IP Conference Phone 8832 0 Cisco IP Conference Phone 7832 0 |
| Not Vulnerable: | |
References:
from SecurityFocus Vulnerabilities https://ift.tt/2Jo8Ynq
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.