PT-2015-1375 · Cisco · Cisco Unified Communications Manager+1

Published

2015-05-29

Updated

2017-01-04

CVE-2015-0751

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Cisco IP Phone 7861 versions using firmware from Cisco Unified Communications Manager 10.3(1)

Description The issue is due to insufficient input validation in the system, allowing a remote attacker to cause a denial of service by sending crafted packets.

Recommendations For Cisco IP Phone 7861 using firmware from Cisco Unified Communications Manager 10.3(1), consider restricting access to the phone's network interface until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399CWE-20

Related Identifiers

BDU:2015-10468

CVE-2015-0751

Affected Products

Cisco Ip Phone 7861

Cisco Unified Communications Manager

PT-2015-1375 · Cisco · Cisco Unified Communications Manager+1

CVE-2015-0751

Weakness Enumeration

Related Identifiers

Affected Products

References · 4