Denial of Service Vulnerability in Cisco IP Phone 7940 and 7960
CVE-2007-1542

Currently unrated

Key Information:

Vendor: Cisco
Status: 7960 Router; 7940 Router
Vendor: CVE Published:; 20 March 2007

Summary

A vulnerability exists in the Cisco IP Phone models 7940 and 7960 that allows remote attackers to trigger a denial of service condition. This vulnerability is exploited through manipulation of the Remote-Party-ID sipURI field within a SIP INVITE request, leading to unintended disruption of service. Firmware versions prior to POS8-6-0 are affected, creating a significant risk for users relying on these devices for communication.

References

http://www.securitytracker.com/id?1017797

vdb-entryx_refsource_SECTRACK

http://www.cisco.com/en/US/products/products_security_res...

vendor-advisoryx_refsource_CISCO

https://exchange.xforce.ibmcloud.com/vulnerabilities/33098

vdb-entryx_refsource_XF

EPSS Score

25% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 20, 2007
Vulnerability Reserved
Mar 20, 2007