FKIE_CVE-2008-0529

Vulnerability from fkie_nvd - Published: 2008-02-15 02:00 - Updated: 2025-04-09 00:30
Severity ?
Summary
Buffer overflow in the telnet server in Cisco Unified IP Phone 7906G, 7911G, 7941G, 7961G, 7970G, and 7971G running SCCP firmware might allow remote authenticated users to execute arbitrary code via a crafted command.
References
psirt@cisco.comhttp://secunia.com/advisories/28935Vendor Advisory
psirt@cisco.comhttp://www.cisco.com/en/US/products/products_security_advisory09186a0080949c7a.shtmlPatch
psirt@cisco.comhttp://www.securityfocus.com/bid/27774
psirt@cisco.comhttp://www.securitytracker.com/id?1019410
psirt@cisco.comhttp://www.vupen.com/english/advisories/2008/0543
psirt@cisco.comhttps://exchange.xforce.ibmcloud.com/vulnerabilities/40493
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/28935Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.cisco.com/en/US/products/products_security_advisory09186a0080949c7a.shtmlPatch
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/27774
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1019410
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2008/0543
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/40493
Impacted products
Vendor Product Version
cisco unified_ip_phone 7906g
cisco unified_ip_phone 7911g
cisco unified_ip_phone 7935
cisco unified_ip_phone 7936
cisco unified_ip_phone 7940
cisco unified_ip_phone 7940g
cisco unified_ip_phone 7941g
cisco unified_ip_phone 7960
cisco unified_ip_phone 7960g
cisco unified_ip_phone 7961g
cisco unified_ip_phone 7970g
cisco unified_ip_phone 7971g
cisco skinny_client_control_protocol_\(sccp\)_firmware *
cisco unified_ip_phone 7940
cisco unified_ip_phone 7940g
cisco unified_ip_phone 7960
cisco unified_ip_phone 7960g
cisco session_initiation_protocol_\(sip\)_firmware *
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:cisco:unified_ip_phone:7906g:*:*:*:*:*:*:*",
              "matchCriteriaId": "53A9A468-CAC3-4DC6-B839-557DBE8246D3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:unified_ip_phone:7911g:*:*:*:*:*:*:*",
              "matchCriteriaId": "26830222-1503-4748-A104-334265D8F06F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:unified_ip_phone:7935:*:*:*:*:*:*:*",
              "matchCriteriaId": "19712324-A41D-49F1-AA74-3B30A731FF47",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:unified_ip_phone:7936:*:*:*:*:*:*:*",
              "matchCriteriaId": "43F9E1FE-4BD5-40B9-B239-B2185821A551",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:unified_ip_phone:7940:*:*:*:*:*:*:*",
              "matchCriteriaId": "26BC4C08-16FD-4E27-AC7E-155E9CBAB808",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:unified_ip_phone:7940g:*:*:*:*:*:*:*",
              "matchCriteriaId": "987BEE5F-5686-4B83-A6EF-903C86439BB3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:unified_ip_phone:7941g:*:*:*:*:*:*:*",
              "matchCriteriaId": "DFE61DF2-3D61-400F-BA70-B506412C9C28",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:unified_ip_phone:7960:*:*:*:*:*:*:*",
              "matchCriteriaId": "6EE292B7-DFC7-402C-BC10-9293D32B75B3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:unified_ip_phone:7960g:*:*:*:*:*:*:*",
              "matchCriteriaId": "648AFF80-3F8B-4966-9899-530F498C8B3B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:unified_ip_phone:7961g:*:*:*:*:*:*:*",
              "matchCriteriaId": "F0B76F56-31D4-4576-AC95-00AED498F25A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:unified_ip_phone:7970g:*:*:*:*:*:*:*",
              "matchCriteriaId": "2747DB12-83B9-40E4-9671-382E241C98EE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:unified_ip_phone:7971g:*:*:*:*:*:*:*",
              "matchCriteriaId": "FF0EBD01-E3AC-44C7-A03A-EDDBA18794C5",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:skinny_client_control_protocol_\\(sccp\\)_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "5FDB3D25-274E-42F5-B5C1-B2A7875F94EE",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:cisco:unified_ip_phone:7940:*:*:*:*:*:*:*",
              "matchCriteriaId": "26BC4C08-16FD-4E27-AC7E-155E9CBAB808",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:unified_ip_phone:7940g:*:*:*:*:*:*:*",
              "matchCriteriaId": "987BEE5F-5686-4B83-A6EF-903C86439BB3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:unified_ip_phone:7960:*:*:*:*:*:*:*",
              "matchCriteriaId": "6EE292B7-DFC7-402C-BC10-9293D32B75B3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:unified_ip_phone:7960g:*:*:*:*:*:*:*",
              "matchCriteriaId": "648AFF80-3F8B-4966-9899-530F498C8B3B",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:session_initiation_protocol_\\(sip\\)_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "780CE3C9-7CA3-4770-8DC9-BCB3365C32F9",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in the telnet server in Cisco Unified IP Phone 7906G, 7911G, 7941G, 7961G, 7970G, and 7971G running SCCP firmware might allow remote authenticated users to execute arbitrary code via a crafted command."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer en el servidor de telnet de Cisco Unified IP Phone 7906G, 7911G, 7941G, 7961G, 7970G, y 7971G ejecut\u00e1ndose en un software empotrado (firmware) SCCP, puede que permita a usuarios autenticados remotamente ejecutar c\u00f3digo de su elecci\u00f3n mediante un comando manipulado."
    }
  ],
  "evaluatorSolution": "Patch requires login",
  "id": "CVE-2008-0529",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": true,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2008-02-15T02:00:00.000",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/28935"
    },
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Patch"
      ],
      "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080949c7a.shtml"
    },
    {
      "source": "psirt@cisco.com",
      "url": "http://www.securityfocus.com/bid/27774"
    },
    {
      "source": "psirt@cisco.com",
      "url": "http://www.securitytracker.com/id?1019410"
    },
    {
      "source": "psirt@cisco.com",
      "url": "http://www.vupen.com/english/advisories/2008/0543"
    },
    {
      "source": "psirt@cisco.com",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/40493"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/28935"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080949c7a.shtml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/27774"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1019410"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2008/0543"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/40493"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.