Cisco IP Phone Overflow and DoS Vulnerabilities
There comes word today of some rather nasty vulnerabilities that effect Cisco IP phones. Some of the affected Cisco (CSCO) devices are:
The following Cisco Unified IP Phone devices running Skinny Client Control Protocol (SCCP) firmware:
7906G, 7911G, 7935, 7936, 7940, 7940G, 7941G, 7960, 7960G, 7961G, 7970G, 7971G
The following Cisco Unified IP Phone devices running Session Initiation Protocol (SIP) firmware:
7940, 7940G, 7960, 7960G
The version of firmware running on an IP Phone can be determined via the Settings menu on the phone or via the phone HTTP interface.
There are numerous vulnerabilities involved here. I have listed the lot after the jump.
Post a Comment