CVE-2012-5445 in Unified IP Phoneinfo

Summary

The kernel in Cisco Native Unix (CNU) on Cisco Unified IP Phone 7900 series devices (aka TNP phones) with software before 9.3.1-ES10 does not properly validate unspecified system calls, which allows attackers to execute arbitrary code or cause a denial of service (memory overwrite) via a crafted binary.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

10/17/2012

Disclosure

12/28/2012

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
7174Cisco Unified IP Phone Kernel Call input validation20Proof-of-ConceptOfficial fixCVE-2012-5445

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!