Remote Information Exposure in Cisco IP Phone 7920
CVE-2005-3804

Currently unrated

Key Information:

Vendor: Cisco
Status: 7920 Wireless Ip Phone
Vendor: CVE Published:; 24 November 2005

Summary

The Cisco IP Phone 7920, running version 1.0(8), exposes a vulnerability by listening on UDP port 17185 to facilitate a VxWorks debugger. This configuration permits remote attackers to access sensitive information, which can lead to unauthorized disclosure and facilitate a denial of service attack against the device.

References

http://securitytracker.com/id?1015232

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/17604/

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/15456

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Nov 24, 2005
Vulnerability Reserved
Nov 24, 2005