CVE-2013-6685

Currently unrated

Key Information:

Vendor
Cisco
Status
Unified Ip Phone Firmware
Unified Ip Phone 8961
Unified Ip Phone 9951
Unified Ip Phone 9971
Vendor
CVE Published:
13 November 2013

Summary

The firmware on Cisco Unified IP phones 8961, 9951, and 9971 uses weak permissions for memory block devices, which allows local users to gain privileges by mounting a device with a setuid file in its filesystem, aka Bug ID CSCui04382.

References

http://tools.cisco.com/security/center/content/CiscoSecur...
vendor-advisoryx_refsource_CISCO

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.