CVE-2007-1072

Name of the Vulnerable Software and Affected Versions: Cisco Unified IP Phone versions 8.0(4)SR1 and earlier

Description: The command line interface in the affected devices allows local users to obtain privileges or cause a denial of service. This issue can also be exploited remotely.

Recommendations: For versions 8.0(4)SR1 and earlier, update to a version later than 8.0(4)SR1 to resolve the issue. As a temporary workaround, consider restricting local access to the command line interface until a patch is available.