Computer Security
[EN] securityvulns.ru no-pyccku


Cisco Unified IP Phones 7900 series security vulnerabilites
Published:02.06.2011
Source:
SecurityVulns ID:11711
Type:client
Threat Level:
5/10
Description:Privilege escalation, signature check bypass for software images.
Affected:CISCO : Cisco 7900
CVE:CVE-2011-1637 (Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.2.1 do not properly verify signatures for software images, which allows local users to gain privileges via a crafted image, aka Bug ID CSCtn65962.)
 CVE-2011-1603 (Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.2.1 allow local users to gain privileges via unspecified vectors, aka Bug ID CSCtn65815.)
 CVE-2011-1602 (The su utility on Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.0.3 allows local users to gain privileges via unspecified vectors, aka Bug ID CSCtf07426.)
Original documentdocumentCISCO, Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unified IP Phones 7900 Series (02.06.2011)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod