CVE-2011-1637
1.5
Vector
AV:L/AC:M/Au:S/C:P/I:N/A:N
Exploitability: 2.7 / Impact: 2.9
Source: NVD
Description
Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.2.1 do not properly verify signatures for software images, which allows local users to gain privileges via a crafted image, aka Bug ID CSCtn65962.
Affected (147)
Products: Cisco: Unified Ip Phone 7906, Unified Ip Phone 7911g, Unified Ip Phone 7931g, Unified Ip Phone 7941g, Unified Ip Phone 7941g Ge, Unified Ip Phone 7942g, Unified Ip Phone 7945g, Unified Ip Phone 7961g, Unified Ip Phone 7961g Ge, Unified Ip Phone 7962g, Unified Ip Phone 7965g, Unified Ip Phone 7970g, Unified Ip Phone 7971g Ge, Unified Ip Phone 7975g, Skinny Client Control Protocol Software
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| Up to 9.1\(1\) |
Related CWEs
References (12)
Source: psirt@cisco.com
Source: psirt@cisco.com
Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Source: psirt@cisco.com
Source: psirt@cisco.com
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Timeline
No history available yet.