Cisco-SA-20131113-CVE-2013-6685

Cisco Unified IP Phone 8900/9900 Series Insecure File Permissions Vulnerability

Cisco-SA-20131113-CVE-2013-6685 · Medium · Published 12 years ago · Updated 12 years ago

A vulnerability in Cisco Unified IP Phone 9951, Cisco Unified IP Phone 9971, and Cisco Unified IP Phone 8961 could allow an authenticated, local attacker to fully compromise the affected device. The vulnerability is due to insecure file permissions on memory block devices. An attacker could exploit this vulnerability by mounting a malicious filesystem that contains an attacker-controlled SUID binary. An exploit could allow the attacker to take complete control of the affected device. Cisco would like to thank Red Balloon Security for reporting this vulnerability. Cisco has confirmed the vulnerability in a security notice and released software updates. To exploit this vulnerability, an attacker must have local access to the targeted device. This access requirement decreases the likelihood of a successful exploit. Cisco indicates through the CVSS score that functional exploit code exists; however, the code is not known to be publicly available.

Cisco advisory ·CSAF JSON

Workarounds

Administrators are advised to apply the appropriate updates.

Administrators are advised to allow only trusted users to access local systems.

Administrators are advised to monitor affected systems.

CVEs	CVE-2013-6685
Cisco Bug IDs	CSCui04382
CVSS Score	Base 6.8 Base 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C/E:F/RL:OF/RC:C
Product Names From Source	Cisco Unified IP Phones 9900 Series Firmware

Related Products

Product	CVE	Evidence
Cisco Unified IP Phones 9900 Series Firmware	CVE-2013-6685	Cisco OpenVuln

Vulnslist

find the latest Cisco vulnerabilities

Cisco Unified IP Phone 8900/9900 Series Insecure File Permissions Vulnerability

Workarounds

Related Products