Remote Code Execution Vulnerability in Hitachi IP5000 VoIP WiFi Phone
CVE-2005-3723

Currently unrated

Key Information:

Vendor: Hitachi
Status: Ip5000 Voip Wifi Phone
Vendor: CVE Published:; 21 November 2005

What is CVE-2005-3723?

The Hitachi IP5000 VoIP WiFi Phone version 1.5.6 features vulnerabilities that permit unauthorized changes to device configurations. Specifically, the device does not allow for the disabling of access to SNMP or TCP port 3390. This oversight enables remote attackers to manipulate configurations via another vulnerability (CVE-2005-3722) or interact with the Unidata Shell, potentially leading to the exposure of sensitive information or denial of service.

References

http://secunia.com/advisories/17628

third-party-advisoryx_refsource_SECUNIA

http://www.hitachi-cable.co.jp/ICSFiles/infosystem/securi...

x_refsource_MISC

http://marc.info/?l=full-disclosure&m=113217425618951&w=2

mailing-listx_refsource_FULLDISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 21, 2005
Vulnerability Reserved
Nov 21, 2005