Peter Lemmens

**Name of the Vulnerable Software and Affected Versions** Cisco IP Phone firmware (affected versions not specified) Cisco IP Phone 6800, Cisco IP Phone 7800, Cisco IP Phone 8800, and Cisco IP Phone 8875 (affected versions not specified) **Description** A vulnerability in the web-based management interface of Cisco IP Phone firmware could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a DoS condition. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted request to the web-based management interface of an affected device. A successful exploit could allow the attacker to cause the affected device to reload. **Recommendations** For Cisco IP Phone firmware, update to a patched version to resolve the issue. For Cisco IP Phone 6800, Cisco IP Phone 7800, Cisco IP Phone 8800, and Cisco IP Phone 8875, update to a patched version to resolve the issue. As a temporary workaround, consider restricting access to the web-based management interface until a patch is available. Avoid using the web-based management interface until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco IP Phone 6800 versions (affected versions not specified) Cisco IP Phone 7800 versions (affected versions not specified) Cisco IP Phone 8800 versions (affected versions not specified) Cisco Video Phone 8875 versions (affected versions not specified) **Description** The issue is related to a lack of authentication for specific endpoints of the web-based management interface on affected devices, allowing an unauthenticated, remote attacker to retrieve sensitive information. A successful exploit could enable the recording of user credentials and traffic to and from the affected device, including VoIP calls that could be replayed. **Recommendations** For Cisco IP Phone 6800, update the firmware to a version that includes a fix for this issue. For Cisco IP Phone 7800, update the firmware to a version that includes a fix for this issue. For Cisco IP Phone 8800, update the firmware to a version that includes a fix for this issue. For Cisco Video Phone 8875, update the firmware to a version that includes a fix for this issue. As a temporary workaround, consider restricting access to the web-based management interface to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Cisco IP Phone 6800 versions (affected versions not specified) Cisco IP Phone 7800 versions (affected versions not specified) Cisco IP Phone 8800 versions (affected versions not specified) Cisco Video Phone 8875 versions (affected versions not specified) **Description** The issue is related to a buffer overflow in the memory of the web interface for managing the firmware of Cisco IP Phones. This can be exploited by an unauthenticated, remote attacker using specially crafted XML requests, potentially allowing the initiation of phone calls on the affected device. The vulnerability exists due to the lack of bounds-checking while parsing XML requests. An attacker could exploit this by sending a crafted XML request to an affected device, potentially allowing them to initiate calls or play sounds on the device. **Recommendations** For Cisco IP Phone 6800, update the firmware to a version that includes the fix for this issue. For Cisco IP Phone 7800, update the firmware to a version that includes the fix for this issue. For Cisco IP Phone 8800, update the firmware to a version that includes the fix for this issue. For Cisco Video Phone 8875, update the firmware to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the XML service on the affected devices until a patch is available.