CVE-2008-0530

Buffer overflow in Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SCCP and SIP firmware might allow remote attackers to execute arbitrary code via a crafted DNS response.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:h:cisco:unified_ip_phone:7906g:*:*:*:*:*:*:*
cpe:2.3:h:cisco:unified_ip_phone:7911g:*:*:*:*:*:*:*
cpe:2.3:h:cisco:unified_ip_phone:7935:*:*:*:*:*:*:*
cpe:2.3:h:cisco:unified_ip_phone:7936:*:*:*:*:*:*:*
cpe:2.3:h:cisco:unified_ip_phone:7940:*:*:*:*:*:*:*
cpe:2.3:h:cisco:unified_ip_phone:7940g:*:*:*:*:*:*:*
cpe:2.3:h:cisco:unified_ip_phone:7941g:*:*:*:*:*:*:*
cpe:2.3:h:cisco:unified_ip_phone:7960:*:*:*:*:*:*:*
cpe:2.3:h:cisco:unified_ip_phone:7960g:*:*:*:*:*:*:*
cpe:2.3:h:cisco:unified_ip_phone:7961g:*:*:*:*:*:*:*
cpe:2.3:h:cisco:unified_ip_phone:7970g:*:*:*:*:*:*:*
cpe:2.3:h:cisco:unified_ip_phone:7971g:*:*:*:*:*:*:*
cpe:2.3:a:cisco:skinny_client_control_protocol_\(sccp\)_firmware:*:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:h:cisco:unified_ip_phone:7940:*:*:*:*:*:*:*
cpe:2.3:h:cisco:unified_ip_phone:7940g:*:*:*:*:*:*:*
cpe:2.3:h:cisco:unified_ip_phone:7960:*:*:*:*:*:*:*
cpe:2.3:h:cisco:unified_ip_phone:7960g:*:*:*:*:*:*:*
cpe:2.3:a:cisco:session_initiation_protocol_\(sip\)_firmware:*:*:*:*:*:*:*:*

History

21 Nov 2024, 00:42

Type Values Removed Values Added
References () http://secunia.com/advisories/28935 - Vendor Advisory () http://secunia.com/advisories/28935 - Vendor Advisory
References () http://www.cisco.com/en/US/products/products_security_advisory09186a0080949c7a.shtml - Patch () http://www.cisco.com/en/US/products/products_security_advisory09186a0080949c7a.shtml - Patch
References () http://www.securityfocus.com/bid/27774 - () http://www.securityfocus.com/bid/27774 -
References () http://www.securitytracker.com/id?1019406 - () http://www.securitytracker.com/id?1019406 -
References () http://www.vupen.com/english/advisories/2008/0543 - () http://www.vupen.com/english/advisories/2008/0543 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/40485 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/40485 -

Information

Published : 2008-02-15 02:00

Updated : 2024-11-21 00:42


NVD link : CVE-2008-0530

Mitre link : CVE-2008-0530

CVE.ORG link : CVE-2008-0530


JSON object : View

Products Affected

cisco

  • unified_ip_phone
  • session_initiation_protocol_\(sip\)_firmware
  • skinny_client_control_protocol_\(sccp\)_firmware
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer