Privilege Escalation Vulnerability in Cisco Unified IP Phones 7900 Series
CVE-2011-1637

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Ip Phone 7906; Unified Ip Phone 7911g; Unified Ip Phone 7931g; Unified Ip Phone 7941g
Vendor: CVE Published:; 2 June 2011

What is CVE-2011-1637?

Cisco Unified IP Phones 7900 Series are vulnerable due to improper signature verification for software images in versions prior to 9.2.1. This flaw allows local users to execute crafted images, potentially leading to unauthorized privilege escalation. It represents a significant security risk, as it may grant users elevated access to sensitive functionalities of the devices, disrupting communication and data integrity.

References

http://www.securitytracker.com/id?1025588

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/44814/

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/48075

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 2, 2011
Vulnerability Reserved
Apr 5, 2011