Denial of Service Vulnerability in Cisco 9900 Unified IP Phones
CVE-2014-0658

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Ip Phones 9900 Series Firmware; Unified Ip Phone 9951; Unified Ip Phone 9971
Vendor: CVE Published:; 10 January 2014

Summary

Cisco 9900 Unified IP Phones are susceptible to remote denial of service attacks that exploit crafted SIP headers. When attackers send malformed SIP messages, they can trigger unregistration of the device, rendering it temporarily inoperable. This vulnerability poses a significant risk to organizations relying on Cisco 9900 phones for communication, as it can disrupt business operations and communications.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

https://exchange.xforce.ibmcloud.com/vulnerabilities/90236

vdb-entryx_refsource_XF

http://osvdb.org/101913

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Jan 10, 2014
Vulnerability Reserved
Jan 2, 2014