CVE-2012-5445

Currently unrated

Key Information:

Vendor: Cisco
Status: Skinny Client Control Protocol Software; Unified Ip Phone; Unified Ip Phone 7906g
Vendor: CVE Published:; 28 December 2012

Summary

The kernel in Cisco Native Unix (CNU) on Cisco Unified IP Phone 7900 series devices (aka TNP phones) with software before 9.3.1-ES10 does not properly validate unspecified system calls, which allows attackers to execute arbitrary code or cause a denial of service (memory overwrite) via a crafted binary.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://events.ccc.de/congress/2012/Fahrplan/events/5400.e...

x_refsource_MISC

Timeline

Vulnerability published
Dec 28, 2012
Vulnerability Reserved
Oct 17, 2012