Cisco ATA 187 Analog Telephone Adaptor Remote Access Vulnerability

cisco-sa-20130206-ata187 · Critical · Published 13 years ago · Updated 13 years ago

Data: Cisco advisories 1 day ago · Cisco CSAF 5 hours ago · NVD CVEs 8 hours ago · NVD CPEs 1 day ago · CISA KEV 1 day ago · EPSS 1 day ago

Cisco ATA 187 Analog Telephone Adaptor firmware versions 9.2.1.0 and 9.2.3.1 contain a vulnerability that could allow an unauthenticated, remote attacker to access the operating system of the affected device. Cisco has released software updates that address this vulnerability. Workarounds that mitigate this vulnerability are available. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130206-ata187

Cisco advisory ·CSAF JSON

Workarounds

It is possible to terminate the listening Telnet process on the device by accessing the device remotely, listing the processes, and then terminating the Telnet process. This prevents further remote access to the device until the device is reloaded.

Additional mitigations that can be deployed on Cisco devices within the network are available in the companion document "Identifying and Mitigating Exploitation of the Cisco ATA 187 Analog Telephone Adaptor Remote Access Vulnerability," which is available at the following

link: http://tools.cisco.com/security/center/viewAMBAlert.x?alertId=27921http://tools.cisco.com/security/center/viewAMBAlert.x?alertId=27921

CVEs	CVE-2013-1111
Cisco Bug IDs	CSCtz67038
CVSS Score	Base 9.0 Base 9.0 AV:N/AC:L/Au:N/C:P/I:P/A:C/E:F/RL:OF/RC:C

Products with public affected evidence

Product	CVE	Affected evidence
Cisco ATA 187 Analog Telephone Adaptor	CVE-2013-1111	structured affected CSAF product_status