Privilege Escalation Vulnerability in Cisco Unified IP Phones 7900 Series
CVE-2011-1602

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Ip Phone 7906; Unified Ip Phone 7911g; Unified Ip Phone 7931g; Unified Ip Phone 7941g
Vendor: CVE Published:; 2 June 2011

Summary

The su utility on Cisco Unified IP Phones 7900 Series devices prior to version 9.0.3 is susceptible to a privilege escalation vulnerability. Local users can exploit this flaw via unspecified vectors to gain unauthorized privileges, potentially leading to further system access and control. This issue is documented in Bug ID CSCtf07426 and affects a vital communication tool, emphasizing the need for timely updates and security measures.

References

http://www.securitytracker.com/id?1025588

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/48074

vdb-entryx_refsource_BID

http://secunia.com/advisories/44814/

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Jun 2, 2011
Vulnerability Reserved
Apr 5, 2011