Published: 15/02/2008 Updated: 08/08/2017

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Buffer overflow in Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SIP firmware might allow remote malicious users to execute arbitrary code via a SIP message with crafted MIME data.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco skinny_client_control_protocol_\\(sccp\\)_firmware
cisco session_initiation_protocol_\\(sip\\)_firmware

Proof of concept attacks for my zero days in Cisco VoIP phones, and other shenanigans.

Cisco_7940G_7960G_remote_exploits Proof of concept attacks for my zero days in Cisco VoIP phones, and other shenanigans The future home of a lot of POCs The POCs are done, I'm just writing things up and requesting CVEs Already posted: SIP OPTIONS packet overflow Sipp POC of my zero day Affected SIP FW versions: 86 (and older, presumably) Confirmed vulnerable versions

CWE-119 http://www.cisco.com/en/US/products/products_security_advisory09186a0080949c7a.shtml http://www.securityfocus.com/bid/27774 http://www.securitytracker.com/id?1019409 http://secunia.com/advisories/28935 http://www.vupen.com/english/advisories/2008/0543 https://exchange.xforce.ibmcloud.com/vulnerabilities/40492 https://nvd.nist.gov https://github.com/skintigh/Cisco_7940G_7960G_remote_exploits

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-0528

Vulnerability Summary

Github Repositories

References

Vulmon Search

About

Products

Connect