Buffer Overflow in Cisco 9900 IP Phones Web Application Interface
CVE-2013-5532

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Ip Phones 9900 Series Firmware; Unified Ip Phone 9951; Unified Ip Phone 9971
Vendor: CVE Published:; 11 October 2013

Summary

A buffer overflow vulnerability exists in the web application interface of Cisco 9900 IP phones. This flaw allows remote attackers to exploit the application by providing excessively long values in unspecified fields, potentially leading to a denial of service condition. Successful exploitation may result in the web application interface becoming unresponsive, impacting the functionality of the affected phone models.

References

http://www.securityfocus.com/bid/62944

vdb-entryx_refsource_BID

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://osvdb.org/98338

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Oct 11, 2013