Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier use weak permissions for unspecified files, which allows local users to cause a denial of service (persistent hang or reboot) by writing to a phone's filesystem, aka Bug ID CSCup90474.
References
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 02:23
Type | Values Removed | Values Added |
---|---|---|
References | () http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0603 - Vendor Advisory | |
References | () http://tools.cisco.com/security/center/viewAlert.x?alertId=37345 - Vendor Advisory | |
References | () http://www.securityfocus.com/bid/72484 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/100619 - |
Information
Published : 2015-02-07 04:59
Updated : 2024-11-21 02:23
NVD link : CVE-2015-0603
Mitre link : CVE-2015-0603
CVE.ORG link : CVE-2015-0603
JSON object : View
Products Affected
cisco
- unified_ip_phone_9971
- unified_ip_phone_9951
- unified_ip_phones_9900_series_firmware
CWE
CWE-264
Permissions, Privileges, and Access Controls