Vulnslist

find the latest Cisco vulnerabilities

Fixed SNMP Communities and Open UDP Port in Cisco 7920 Wireless IP Phone

cisco-sa-20051116-7920 · NA · Published · Updated

The Cisco 7920 Wireless IP Phone provides Voice Over IP service via IEEE 802.11b Wi-Fi networks and has a form-factor similar to a cordless phone. This product contains two vulnerabilities: The first vulnerability is an SNMP service with fixed community strings that allow remote users to read, write, and erase the configuration of an affected device. The second vulnerability is an open VxWorks Remote Debugger on UDP port 17185 that may allow an unauthenticated remote user to access debugging information or cause a denial of service. Cisco has made free software available to address these vulnerabilities for affected customers. There are workarounds available to mitigate the effects of the vulnerability. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20051116-7920.

Cisco advisory ·CSAF JSON

Workarounds

No workaround information imported yet.

CVEsCVE-2005-3803, CVE-2005-3804, CVE-2006-0374
Cisco Bug IDsNA
CVSS ScoreBase NA
Product Names From Source
NA, Cisco Unified Wireless IP Phone 7920

Related Products

Product CVE Evidence
Cisco RV Series Routers CVE-2006-0374 Cisco OpenVuln
Cisco RV Series Routers CVE-2005-3804 Cisco OpenVuln
Cisco RV Series Routers CVE-2005-3803 Cisco OpenVuln
Cisco Nexus Dashboard CVE-2006-0374 Cisco OpenVuln
Cisco Nexus Dashboard CVE-2005-3804 Cisco OpenVuln
Cisco Nexus Dashboard CVE-2005-3803 Cisco OpenVuln
Cisco Unified Wireless IP Phone 7920 CVE-2006-0374 Cisco OpenVuln
Cisco Unified Wireless IP Phone 7920 CVE-2005-3804 Cisco OpenVuln
Cisco Unified Wireless IP Phone 7920 CVE-2005-3803 Cisco OpenVuln