CVE-2008-1113

Name of the Vulnerable Software and Affected Versions Cisco Unified Wireless IP Phone 7921 (affected versions not specified)

Description The issue concerns a problem with the validation of server certificates when using Protected Extensible Authentication Protocol (PEAP). This allows remote wireless access points to intercept hashed passwords and perform man-in-the-middle (MITM) attacks.

Recommendations For Cisco Unified Wireless IP Phone 7921, consider disabling the use of Protected Extensible Authentication Protocol (PEAP) until a patch is available to properly validate server certificates. Restrict access to wireless networks to minimize the risk of exploitation.