BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to the Zeroday Tracker: Your Vulnerability Watchlist

Get critical updates on the latest zeroday threats, including impact, mitigation and protection information - only from BeyondTrust.

Cisco Unified IP Phone System Call Vulnerability

Disclosed January 9, 2013    Fully Patched

Vulnerability Description:

7900 Series Cisco Unified IP Phones contain a vulnerability that can allow for arbitrary code execution. This vulnerability is caused by a failure to validate input passed to kernel system calls from user applications. An attacker could leverage this vulnerability either by gaining physical access to the vulnerable device, or access it through SSH.

Vendors:

Cisco

Vulnerable Software/Devices:

Cisco Unified IP Phone 7906
Cisco Unified IP Phone 7911G
Cisco Unified IP Phone 7931G
Cisco Unified IP Phone 7941G
Cisco Unified IP Phone 7941G-GE
Cisco Unified IP Phone 7942G
Cisco Unified IP Phone 7945G
Cisco Unified IP Phone 7961G
Cisco Unified IP Phone 7961G-GE
Cisco Unified IP Phone 7962G
Cisco Unified IP Phone 7965G
Cisco Unified IP Phone 7970G
Cisco Unified IP Phone 7971G-GE
Cisco Unified IP Phone 7975G

Vulnerability Severity:

High

Exploit Availability:

N/A

Exploit Impact:

Remote Code Execution
Remote Code Execution Exploitation of this vulnerability is possible via maliciously crafted usermode applications. Attackers who successfully exploit this vulnerability will be able to execute code on the vulnerable system with the same rights as the currently logged on user.

BeyondTrust Prevention and Detection:

BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.

  • 18006 - Cisco Unified IP Phone System Call Vulnerability

Mitigation:

Apply general service release 9.3(1)SR2. If the patch cannot be applied, Cisco recommends disabling the Cisco Unified IP Phone SSH server and setup encrypted phone configuration files. 

Links:

CVE(s):

None