Vulnslist

find the latest Cisco vulnerabilities

Cisco IP Phone SIP INVITE Message Denial of Service Vulnerability

Cisco-SA-20070320-CVE-2007-1542 · Medium · Published · Updated

Cisco 7940 and 7960 IP phones with firmware version 7.4 contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability exists due to an error within the handling of malformed SIP INVITE messages.  An attacker could exploit this vulnerability by sending a crafted INVITE message to the device to cause it to reboot, resulting in a temporary DoS condition. Proof-of-concept code is available. Cisco confirmed this vulnerability and released updates to correct it. To exploit this vulnerability, the attacker must have access to the network on which the device resides.  Another attack vector would be a SIP gateway that could pass the malicious SIP INVITE message to an affected device.  Typically IP phones reside on their own network, which could prevent an external attacker from exploiting this vulnerability.  However, an attacker with physical access to an IP phone could potentially unplug the phone and access the phone network directly from the connection that the IP phone normally plugs into. Cisco has released firmware version 8.6 is not affected by this vulnerability

Cisco advisory ·CSAF JSON

Workarounds

Administrators are advised to apply the appropriate updates.

Administrators are advised to place all Cisco IP phones on an isolated network or VLAN.  This will help prevent outside attackers from being able to exploit this security issue.

Administrators are advised to maintain physical security on IP phone ports.  Any unused ports should be disabled until needed.

CVEsCVE-2007-1542
Cisco Bug IDsNA
CVSS ScoreBase 3.3
Product Names From Source
Cisco IP phone

CSAF Product Statuses

Product Status Source CVE Rows
Cisco IP phone known_affected cisco_csaf CVE-2007-1542 1

Related Products

Product CVE Evidence
Cisco IP phone CVE-2007-1542 Cisco OpenVuln