CVE-2008-0529
Severity Score
10.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Buffer overflow in the telnet server in Cisco Unified IP Phone 7906G, 7911G, 7941G, 7961G, 7970G, and 7971G running SCCP firmware might allow remote authenticated users to execute arbitrary code via a crafted command.
Desbordamiento de búfer en el servidor de telnet de Cisco Unified IP Phone 7906G, 7911G, 7941G, 7961G, 7970G, y 7971G ejecutándose en un software empotrado (firmware) SCCP, puede que permita a usuarios autenticados remotamente ejecutar código de su elección mediante un comando manipulado.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2008-01-31 CVE Reserved
- 2008-02-13 CVE Published
- 2024-08-07 CVE Updated
- 2024-11-11 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (6)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/27774 | Vdb Entry | |
| http://www.securitytracker.com/id?1019410 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2008/0543 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/40493 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.cisco.com/en/US/products/products_security_advisory09186a0080949c7a.shtml | 2017-08-08 |
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/28935 | 2017-08-08 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Skinny Client Control Protocol \(sccp\) Firmware Search vendor "Cisco" for product "Skinny Client Control Protocol \(sccp\) Firmware" | * | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Ip Phone Search vendor "Cisco" for product "Unified Ip Phone" | 7906g Search vendor "Cisco" for product "Unified Ip Phone" and version "7906g" | - |
Safe
|
| Cisco Search vendor "Cisco" | Skinny Client Control Protocol \(sccp\) Firmware Search vendor "Cisco" for product "Skinny Client Control Protocol \(sccp\) Firmware" | * | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Ip Phone Search vendor "Cisco" for product "Unified Ip Phone" | 7911g Search vendor "Cisco" for product "Unified Ip Phone" and version "7911g" | - |
Safe
|
| Cisco Search vendor "Cisco" | Skinny Client Control Protocol \(sccp\) Firmware Search vendor "Cisco" for product "Skinny Client Control Protocol \(sccp\) Firmware" | * | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Ip Phone Search vendor "Cisco" for product "Unified Ip Phone" | 7935 Search vendor "Cisco" for product "Unified Ip Phone" and version "7935" | - |
Safe
|
| Cisco Search vendor "Cisco" | Skinny Client Control Protocol \(sccp\) Firmware Search vendor "Cisco" for product "Skinny Client Control Protocol \(sccp\) Firmware" | * | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Ip Phone Search vendor "Cisco" for product "Unified Ip Phone" | 7936 Search vendor "Cisco" for product "Unified Ip Phone" and version "7936" | - |
Safe
|
| Cisco Search vendor "Cisco" | Skinny Client Control Protocol \(sccp\) Firmware Search vendor "Cisco" for product "Skinny Client Control Protocol \(sccp\) Firmware" | * | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Ip Phone Search vendor "Cisco" for product "Unified Ip Phone" | 7940 Search vendor "Cisco" for product "Unified Ip Phone" and version "7940" | - |
Safe
|
| Cisco Search vendor "Cisco" | Skinny Client Control Protocol \(sccp\) Firmware Search vendor "Cisco" for product "Skinny Client Control Protocol \(sccp\) Firmware" | * | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Ip Phone Search vendor "Cisco" for product "Unified Ip Phone" | 7940g Search vendor "Cisco" for product "Unified Ip Phone" and version "7940g" | - |
Safe
|
| Cisco Search vendor "Cisco" | Skinny Client Control Protocol \(sccp\) Firmware Search vendor "Cisco" for product "Skinny Client Control Protocol \(sccp\) Firmware" | * | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Ip Phone Search vendor "Cisco" for product "Unified Ip Phone" | 7941g Search vendor "Cisco" for product "Unified Ip Phone" and version "7941g" | - |
Safe
|
| Cisco Search vendor "Cisco" | Skinny Client Control Protocol \(sccp\) Firmware Search vendor "Cisco" for product "Skinny Client Control Protocol \(sccp\) Firmware" | * | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Ip Phone Search vendor "Cisco" for product "Unified Ip Phone" | 7960 Search vendor "Cisco" for product "Unified Ip Phone" and version "7960" | - |
Safe
|
| Cisco Search vendor "Cisco" | Skinny Client Control Protocol \(sccp\) Firmware Search vendor "Cisco" for product "Skinny Client Control Protocol \(sccp\) Firmware" | * | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Ip Phone Search vendor "Cisco" for product "Unified Ip Phone" | 7960g Search vendor "Cisco" for product "Unified Ip Phone" and version "7960g" | - |
Safe
|
| Cisco Search vendor "Cisco" | Skinny Client Control Protocol \(sccp\) Firmware Search vendor "Cisco" for product "Skinny Client Control Protocol \(sccp\) Firmware" | * | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Ip Phone Search vendor "Cisco" for product "Unified Ip Phone" | 7961g Search vendor "Cisco" for product "Unified Ip Phone" and version "7961g" | - |
Safe
|
| Cisco Search vendor "Cisco" | Skinny Client Control Protocol \(sccp\) Firmware Search vendor "Cisco" for product "Skinny Client Control Protocol \(sccp\) Firmware" | * | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Ip Phone Search vendor "Cisco" for product "Unified Ip Phone" | 7970g Search vendor "Cisco" for product "Unified Ip Phone" and version "7970g" | - |
Safe
|
| Cisco Search vendor "Cisco" | Skinny Client Control Protocol \(sccp\) Firmware Search vendor "Cisco" for product "Skinny Client Control Protocol \(sccp\) Firmware" | * | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Ip Phone Search vendor "Cisco" for product "Unified Ip Phone" | 7971g Search vendor "Cisco" for product "Unified Ip Phone" and version "7971g" | - |
Safe
|
| Cisco Search vendor "Cisco" | Session Initiation Protocol \(sip\) Firmware Search vendor "Cisco" for product "Session Initiation Protocol \(sip\) Firmware" | * | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Ip Phone Search vendor "Cisco" for product "Unified Ip Phone" | 7940 Search vendor "Cisco" for product "Unified Ip Phone" and version "7940" | - |
Safe
|
| Cisco Search vendor "Cisco" | Session Initiation Protocol \(sip\) Firmware Search vendor "Cisco" for product "Session Initiation Protocol \(sip\) Firmware" | * | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Ip Phone Search vendor "Cisco" for product "Unified Ip Phone" | 7940g Search vendor "Cisco" for product "Unified Ip Phone" and version "7940g" | - |
Safe
|
| Cisco Search vendor "Cisco" | Session Initiation Protocol \(sip\) Firmware Search vendor "Cisco" for product "Session Initiation Protocol \(sip\) Firmware" | * | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Ip Phone Search vendor "Cisco" for product "Unified Ip Phone" | 7960 Search vendor "Cisco" for product "Unified Ip Phone" and version "7960" | - |
Safe
|
| Cisco Search vendor "Cisco" | Session Initiation Protocol \(sip\) Firmware Search vendor "Cisco" for product "Session Initiation Protocol \(sip\) Firmware" | * | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Ip Phone Search vendor "Cisco" for product "Unified Ip Phone" | 7960g Search vendor "Cisco" for product "Unified Ip Phone" and version "7960g" | - |
Safe
|