var-201212-0042
Vulnerability from variot
The kernel in Cisco Native Unix (CNU) on Cisco Unified IP Phone 7900 series devices (aka TNP phones) with software before 9.3.1-ES10 does not properly validate unspecified system calls, which allows attackers to execute arbitrary code or cause a denial of service (memory overwrite) via a crafted binary. The Cisco Unified IP Phone is Cisco's unified IP telephony solution. Or perform a denial of service attack due to memory coverage. Local attackers can exploit this issue to gain elevated privileges. Successful exploits will result in the complete compromise of the affected device. This issue being tracked by Cisco Bug ID CSCuc83860. The vulnerability stems from the program not properly validating unspecified system calls
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201212-0042",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "unified ip phone",
"scope": "eq",
"trust": 1.8,
"vendor": "cisco",
"version": "7911g"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 1.8,
"vendor": "cisco",
"version": "7941g"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 1.8,
"vendor": "cisco",
"version": "7961g"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 1.8,
"vendor": "cisco",
"version": "7970g"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 1.7,
"vendor": "cisco",
"version": "7906"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "9.2\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.4\\(4\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "9.2\\(1\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.5\\(3\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "9.1\\(1\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "9.0\\(3b\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.5\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.1\\(6\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.1\\(10\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2\\(7\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "4.1\\(6\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "5.0\\(1a\\)"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7960g"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2\\(6a\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.1\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.0\\(3\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.0\\(1\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "1.0\\(3\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "4.0\\(0\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3\\(6\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3\\(9\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "1.1\\(1\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7.2\\(4\\)"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7971g"
},
{
"model": "unified ip phone 7906g",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7971g"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.0\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "1.4\\(1\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "1.3\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2\\(4\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3\\(10\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.0\\(4\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2\\(9\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.3\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2\\(10\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7.0\\(1\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "5.0\\(6\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "1.4\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "5.0\\(7\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.3\\(5\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "5.0\\(3\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "1.0\\(4\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "5.0\\(5\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "1.3\\(3\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "4.1\\(5\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.0\\(2\\)"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7935"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2\\(3\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "6.0\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.0\\(6\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.1\\(4\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3\\(20\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3\\(4\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.0\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "6.1\\(0\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "1.3\\(1\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2\\(6\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2\\(11\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.0\\(9\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.3\\(3\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2\\(14\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2\\(12\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3\\(8\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3\\(3\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3\\(14\\)"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7940"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.1"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "4.1\\(3\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "6.0\\(4\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "4.1\\(4\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3\\(7\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.2\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "4.1\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.0\\(3\\)"
},
{
"model": "skinny client control protocol software",
"scope": "lte",
"trust": 1.0,
"vendor": "cisco",
"version": "9.2\\(4\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.1\\(1\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2\\(13\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.2\\(1\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3\\(15\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.4\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.3\\(1\\)"
},
{
"model": "unified ip phone 7906g",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7911g"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7936"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "1.0\\(5\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "2.0\\(0\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.0\\(5\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3\\(12\\)"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7906g"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "6.0\\(5\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "6.0\\(3\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "1.2\\(1\\)"
},
{
"model": "unified ip phone 7906g",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7961g"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.0\\(0\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "5.0\\(0\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "1.0\\(1\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7.0\\(3\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.1\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7.2\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.0\\(7\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2\\(15\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "1.0\\(9\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "2.0\\(1\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7.1\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "4.1\\(7\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3\\(13\\)"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7960"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.0\\(10\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.1\\(11\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2\\(8\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "1.0\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.0\\(1\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.1\\(1\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2\\(5\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.4\\(1\\)"
},
{
"model": "unified ip phone 7906g",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7941g"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.0\\(8\\)"
},
{
"model": "unified ip phone 7906g",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7970g"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3\\(5\\)"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7940g"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3\\(16\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "6.0\\(0\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7.2\\(3\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.0"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2\\(1\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3\\(11\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "6.1\\(1\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.70"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.1\\(3\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.4\\(3\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "7.0\\(2\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "1.3\\(4\\)"
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "8.5\\(4\\)"
},
{
"model": "unified ip phone 7941g-ge",
"scope": null,
"trust": 0.9,
"vendor": "cisco",
"version": null
},
{
"model": "unified ip phone 7942g",
"scope": null,
"trust": 0.9,
"vendor": "cisco",
"version": null
},
{
"model": "unified ip phone 7911g",
"scope": null,
"trust": 0.9,
"vendor": "cisco",
"version": null
},
{
"model": "unified ip phone 7931g",
"scope": null,
"trust": 0.9,
"vendor": "cisco",
"version": null
},
{
"model": "unified ip phone 7941g",
"scope": null,
"trust": 0.9,
"vendor": "cisco",
"version": null
},
{
"model": "unified ip phone 7945g",
"scope": null,
"trust": 0.9,
"vendor": "cisco",
"version": null
},
{
"model": "unified ip phone 7961g",
"scope": null,
"trust": 0.9,
"vendor": "cisco",
"version": null
},
{
"model": "unified ip phone 7961g-ge",
"scope": null,
"trust": 0.9,
"vendor": "cisco",
"version": null
},
{
"model": "unified ip phone 7962g",
"scope": null,
"trust": 0.9,
"vendor": "cisco",
"version": null
},
{
"model": "unified ip phone 7970g",
"scope": null,
"trust": 0.9,
"vendor": "cisco",
"version": null
},
{
"model": "unified ip phone 7971g ge",
"scope": "eq",
"trust": 0.9,
"vendor": "cisco",
"version": null
},
{
"model": "unified ip phone 7975g",
"scope": null,
"trust": 0.9,
"vendor": "cisco",
"version": null
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "7931g"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "7941g-ge"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "7942g"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "7945g"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "7961g-ge"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "7962g"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "7965g"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "7971g-ge"
},
{
"model": "unified ip phone",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "7975g"
},
{
"model": "skinny client control protocol software",
"scope": "lt",
"trust": 0.8,
"vendor": "cisco",
"version": "9.3.1-es10"
},
{
"model": "unified ip phone 7965g",
"scope": null,
"trust": 0.6,
"vendor": "cisco",
"version": null
},
{
"model": "skinny client control protocol software",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "9.2\\(4\\)"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2012-9507"
},
{
"db": "BID",
"id": "57090"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-005843"
},
{
"db": "CNNVD",
"id": "CNNVD-201212-382"
},
{
"db": "NVD",
"id": "CVE-2012-5445"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/h:cisco:unified_ip_phone",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:cisco:skinny_client_control_protocol_software",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2012-005843"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Ang Cui from Columbia University.",
"sources": [
{
"db": "BID",
"id": "57090"
}
],
"trust": 0.3
},
"cve": "CVE-2012-5445",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "SINGLE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 6.8,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 3.1,
"id": "CVE-2012-5445",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "MEDIUM",
"trust": 1.0,
"vectorString": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Complete",
"baseScore": 10.0,
"confidentialityImpact": "Complete",
"exploitabilityScore": null,
"id": "CVE-2012-5445",
"impactScore": null,
"integrityImpact": "Complete",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "High",
"trust": 0.8,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "SINGLE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 6.8,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 3.1,
"id": "VHN-58726",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:L/AC:L/AU:S/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2012-5445",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "NVD",
"id": "CVE-2012-5445",
"trust": 0.8,
"value": "High"
},
{
"author": "CNNVD",
"id": "CNNVD-201212-382",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "VULHUB",
"id": "VHN-58726",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-58726"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-005843"
},
{
"db": "CNNVD",
"id": "CNNVD-201212-382"
},
{
"db": "NVD",
"id": "CVE-2012-5445"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The kernel in Cisco Native Unix (CNU) on Cisco Unified IP Phone 7900 series devices (aka TNP phones) with software before 9.3.1-ES10 does not properly validate unspecified system calls, which allows attackers to execute arbitrary code or cause a denial of service (memory overwrite) via a crafted binary. The Cisco Unified IP Phone is Cisco\u0027s unified IP telephony solution. Or perform a denial of service attack due to memory coverage. \nLocal attackers can exploit this issue to gain elevated privileges. Successful exploits will result in the complete compromise of the affected device. \nThis issue being tracked by Cisco Bug ID CSCuc83860. The vulnerability stems from the program not properly validating unspecified system calls",
"sources": [
{
"db": "NVD",
"id": "CVE-2012-5445"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-005843"
},
{
"db": "CNVD",
"id": "CNVD-2012-9507"
},
{
"db": "BID",
"id": "57090"
},
{
"db": "VULHUB",
"id": "VHN-58726"
}
],
"trust": 2.52
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2012-5445",
"trust": 3.4
},
{
"db": "BID",
"id": "57090",
"trust": 1.0
},
{
"db": "JVNDB",
"id": "JVNDB-2012-005843",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201212-382",
"trust": 0.7
},
{
"db": "CNVD",
"id": "CNVD-2012-9507",
"trust": 0.6
},
{
"db": "SEEBUG",
"id": "SSVID-91777",
"trust": 0.1
},
{
"db": "VULHUB",
"id": "VHN-58726",
"trust": 0.1
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2012-9507"
},
{
"db": "VULHUB",
"id": "VHN-58726"
},
{
"db": "BID",
"id": "57090"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-005843"
},
{
"db": "CNNVD",
"id": "CNNVD-201212-382"
},
{
"db": "NVD",
"id": "CVE-2012-5445"
}
]
},
"id": "VAR-201212-0042",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2012-9507"
},
{
"db": "VULHUB",
"id": "VHN-58726"
}
],
"trust": 1.3166666999999999
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"Network device"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2012-9507"
}
]
},
"last_update_date": "2024-11-23T22:56:41.633000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "cisco-sa-20130109-uipphone",
"trust": 0.8,
"url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130109-uipphone"
},
{
"title": "cisco-sa-20130109-uipphone",
"trust": 0.8,
"url": "http://www.cisco.com/cisco/web/support/JP/111/1117/1117015_cisco-sa-20130109-uipphone-j.html"
},
{
"title": "Patch for Cisco Unified IP Phone 7900 Free Code Execution Vulnerability",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/27075"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2012-9507"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-005843"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-20",
"trust": 1.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-58726"
},
{
"db": "NVD",
"id": "CVE-2012-5445"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.3,
"url": "http://events.ccc.de/congress/2012/fahrplan/events/5400.en.html"
},
{
"trust": 1.1,
"url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20130109-uipphone"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-5445"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2012-5445"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/en/us/products/hw/phones/ps379/index.html"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2012-9507"
},
{
"db": "VULHUB",
"id": "VHN-58726"
},
{
"db": "BID",
"id": "57090"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-005843"
},
{
"db": "CNNVD",
"id": "CNNVD-201212-382"
},
{
"db": "NVD",
"id": "CVE-2012-5445"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CNVD",
"id": "CNVD-2012-9507"
},
{
"db": "VULHUB",
"id": "VHN-58726"
},
{
"db": "BID",
"id": "57090"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-005843"
},
{
"db": "CNNVD",
"id": "CNNVD-201212-382"
},
{
"db": "NVD",
"id": "CVE-2012-5445"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2013-01-04T00:00:00",
"db": "CNVD",
"id": "CNVD-2012-9507"
},
{
"date": "2012-12-28T00:00:00",
"db": "VULHUB",
"id": "VHN-58726"
},
{
"date": "2012-12-27T00:00:00",
"db": "BID",
"id": "57090"
},
{
"date": "2013-01-04T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2012-005843"
},
{
"date": "2012-12-31T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201212-382"
},
{
"date": "2012-12-28T11:48:44.673000",
"db": "NVD",
"id": "CVE-2012-5445"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2013-01-04T00:00:00",
"db": "CNVD",
"id": "CNVD-2012-9507"
},
{
"date": "2013-03-04T00:00:00",
"db": "VULHUB",
"id": "VHN-58726"
},
{
"date": "2015-03-19T08:52:00",
"db": "BID",
"id": "57090"
},
{
"date": "2013-02-07T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2012-005843"
},
{
"date": "2012-12-31T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201212-382"
},
{
"date": "2024-11-21T01:44:41.100000",
"db": "NVD",
"id": "CVE-2012-5445"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "local",
"sources": [
{
"db": "BID",
"id": "57090"
},
{
"db": "CNNVD",
"id": "CNNVD-201212-382"
}
],
"trust": 0.9
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco Unified IP Phone 7900 Series arbitrary code execution vulnerability",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2012-005843"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "input validation",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201212-382"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…