Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv2

CVE-2012-5445

Published: 28/12/2012 Updated: 04/03/2013
CVSS v2 Base Score: 6.8 | Impact Score: 10 | Exploitability Score: 3.1
VMScore: 605
Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C
Subscribe to Cisco

Vulnerability Summary

The kernel in Cisco Native Unix (CNU) on Cisco Unified IP Phone 7900 series devices (aka TNP phones) with software prior to 9.3.1-ES10 does not properly validate unspecified system calls, which allows malicious users to execute arbitrary code or cause a denial of service (memory overwrite) via a crafted binary.

Vulnerable Product Search on Vulmon Subscribe to Product

cisco skinny_client_control_protocol_software 1.1\\(1\\)

cisco skinny_client_control_protocol_software 1.3\\(1\\)

cisco skinny_client_control_protocol_software 2.0\\(0\\)

cisco skinny_client_control_protocol_software 3.0\\(2\\)

cisco skinny_client_control_protocol_software 4.1\\(6\\)

cisco skinny_client_control_protocol_software 4.0\\(0\\)

cisco skinny_client_control_protocol_software 6.0\\(4\\)

cisco skinny_client_control_protocol_software 7.1\\(2\\)

cisco skinny_client_control_protocol_software 6.1\\(0\\)

cisco skinny_client_control_protocol_software 8.0\\(4\\)

cisco skinny_client_control_protocol_software 8.0\\(5\\)

cisco skinny_client_control_protocol_software 7.0\\(3\\)

cisco skinny_client_control_protocol_software 8.0\\(10\\)

cisco skinny_client_control_protocol_software 1.0\\(2\\)

cisco skinny_client_control_protocol_software 1.0\\(1\\)

cisco skinny_client_control_protocol_software 3.2\\(5\\)

cisco skinny_client_control_protocol_software 3.2\\(15\\)

cisco skinny_client_control_protocol_software 3.3\\(14\\)

cisco skinny_client_control_protocol_software 3.3\\(16\\)

cisco skinny_client_control_protocol_software 3.3\\(10\\)

cisco skinny_client_control_protocol_software 3.2\\(2\\)

cisco skinny_client_control_protocol_software 3.3\\(20\\)

cisco skinny_client_control_protocol_software 3.1\\(11\\)

cisco skinny_client_control_protocol_software 5.0\\(5\\)

cisco skinny_client_control_protocol_software 3.3\\(2\\)

cisco skinny_client_control_protocol_software 3.3\\(4\\)

cisco skinny_client_control_protocol_software 8.0\\(6\\)

cisco skinny_client_control_protocol_software 8.0\\(8\\)

cisco skinny_client_control_protocol_software 1.2\\(1\\)

cisco skinny_client_control_protocol_software 1.3\\(2\\)

cisco skinny_client_control_protocol_software 1.4\\(2\\)

cisco skinny_client_control_protocol_software 2.0\\(1\\)

cisco skinny_client_control_protocol_software 4.1\\(5\\)

cisco skinny_client_control_protocol_software 4.1\\(7\\)

cisco skinny_client_control_protocol_software 7.2\\(2\\)

cisco skinny_client_control_protocol_software 6.0\\(2\\)

cisco skinny_client_control_protocol_software 5.0\\(6\\)

cisco skinny_client_control_protocol_software 6.1\\(1\\)

cisco skinny_client_control_protocol_software 7.0\\(2\\)

cisco skinny_client_control_protocol_software 8.0\\(1\\)

cisco skinny_client_control_protocol_software 3.2\\(11\\)

cisco skinny_client_control_protocol_software 3.2\\(6a\\)

cisco skinny_client_control_protocol_software 3.2\\(4\\)

cisco skinny_client_control_protocol_software 3.3\\(15\\)

cisco skinny_client_control_protocol_software 3.3\\(9\\)

cisco skinny_client_control_protocol_software 3.2\\(3\\)

cisco skinny_client_control_protocol_software 3.1\\(1\\)

cisco skinny_client_control_protocol_software 3.1\\(6\\)

cisco skinny_client_control_protocol_software 5.0\\(3\\)

cisco skinny_client_control_protocol_software 3.3\\(7\\)

cisco skinny_client_control_protocol_software 3.2\\(6\\)

cisco skinny_client_control_protocol_software 8.0\\(7\\)

cisco skinny_client_control_protocol_software 8.0\\(9\\)

cisco skinny_client_control_protocol_software 8.3\\(5\\)

cisco skinny_client_control_protocol_software 8.3\\(3\\)

cisco skinny_client_control_protocol_software 8.2\\(2\\)

cisco skinny_client_control_protocol_software 8.2\\(1\\)

cisco skinny_client_control_protocol_software 8.5\\(3\\)

cisco skinny_client_control_protocol_software 8.5\\(2\\)

cisco skinny_client_control_protocol_software 9.2\\(1\\)

cisco skinny_client_control_protocol_software

cisco skinny_client_control_protocol_software 3.0

cisco skinny_client_control_protocol_software 3.1

cisco skinny_client_control_protocol_software 3.2

cisco skinny_client_control_protocol_software 3.0\\(0\\)

cisco skinny_client_control_protocol_software 4.1\\(2\\)

cisco skinny_client_control_protocol_software 4.1\\(3\\)

cisco skinny_client_control_protocol_software 4.1\\(4\\)

cisco skinny_client_control_protocol_software 6.0\\(0\\)

cisco skinny_client_control_protocol_software 6.0\\(3\\)

cisco skinny_client_control_protocol_software 5.0\\(7\\)

cisco skinny_client_control_protocol_software 1.0\\(5\\)

cisco skinny_client_control_protocol_software 1.0\\(9\\)

cisco skinny_client_control_protocol_software 1.0\\(3\\)

cisco skinny_client_control_protocol_software 1.0\\(4\\)

cisco skinny_client_control_protocol_software 3.2\\(14\\)

cisco skinny_client_control_protocol_software 3.2\\(13\\)

cisco skinny_client_control_protocol_software 3.2\\(12\\)

cisco skinny_client_control_protocol_software 3.3\\(13\\)

cisco skinny_client_control_protocol_software 3.1\\(2\\)

cisco skinny_client_control_protocol_software 3.1\\(3\\)

cisco skinny_client_control_protocol_software 3.1\\(10\\)

cisco skinny_client_control_protocol_software 3.0\\(1\\)

cisco skinny_client_control_protocol_software 3.3\\(3\\)

cisco skinny_client_control_protocol_software 8.70

cisco skinny_client_control_protocol_software 8.1\\(1\\)

cisco skinny_client_control_protocol_software 8.1\\(2\\)

cisco skinny_client_control_protocol_software 8.3\\(2\\)

cisco skinny_client_control_protocol_software 8.3\\(1\\)

cisco skinny_client_control_protocol_software 9.0\\(3b\\)

cisco skinny_client_control_protocol_software 9.1\\(1\\)

cisco skinny_client_control_protocol_software 1.3\\(3\\)

cisco skinny_client_control_protocol_software 1.3\\(4\\)

cisco skinny_client_control_protocol_software 1.4\\(1\\)

cisco skinny_client_control_protocol_software 7.2\\(4\\)

cisco skinny_client_control_protocol_software 7.2\\(3\\)

cisco skinny_client_control_protocol_software 7.0\\(1\\)

cisco skinny_client_control_protocol_software 6.0\\(5\\)

cisco skinny_client_control_protocol_software 8.0\\(2\\)

cisco skinny_client_control_protocol_software 8.0\\(3\\)

cisco skinny_client_control_protocol_software 3.2\\(10\\)

cisco skinny_client_control_protocol_software 3.2\\(9\\)

cisco skinny_client_control_protocol_software 3.2\\(8\\)

cisco skinny_client_control_protocol_software 3.2\\(7\\)

cisco skinny_client_control_protocol_software 3.3\\(11\\)

cisco skinny_client_control_protocol_software 3.3\\(12\\)

cisco skinny_client_control_protocol_software 3.1\\(4\\)

cisco skinny_client_control_protocol_software 3.2\\(1\\)

cisco skinny_client_control_protocol_software 5.0\\(0\\)

cisco skinny_client_control_protocol_software 5.0\\(1a\\)

cisco skinny_client_control_protocol_software 3.3\\(6\\)

cisco skinny_client_control_protocol_software 3.3\\(5\\)

cisco skinny_client_control_protocol_software 3.3\\(8\\)

cisco skinny_client_control_protocol_software 8.4\\(3\\)

cisco skinny_client_control_protocol_software 8.4\\(2\\)

cisco skinny_client_control_protocol_software 8.4\\(1\\)

cisco skinny_client_control_protocol_software 9.0\\(2\\)

cisco skinny_client_control_protocol_software 8.5\\(4\\)

cisco skinny_client_control_protocol_software 9.0\\(3\\)

cisco skinny_client_control_protocol_software 8.4\\(4\\)

cisco skinny_client_control_protocol_software 9.2\\(2\\)

cisco unified_ip_phone 7961g

cisco unified_ip_phone 7936

cisco unified_ip_phone_7906g 7971g

cisco unified_ip_phone_7906g 7961g

cisco unified_ip_phone 7940g

cisco unified_ip_phone 7941g

cisco unified_ip_phone_7906g 7941g

cisco unified_ip_phone_7906g 7911g

cisco unified_ip_phone 7935

cisco unified_ip_phone 7911g

cisco unified_ip_phone 7971g

cisco unified_ip_phone 7960

cisco unified_ip_phone 7960g

cisco unified_ip_phone 7970g

cisco unified_ip_phone 7940

cisco unified_ip_phone_7906g 7970g

cisco unified_ip_phone 7906g

Vendor Advisories

Cisco: Cisco Unified IP Phone Local Kernel System Call Input Validation Vulnerability
Cisco Unified IP Phones 7900 Series versions 93(1)SR1 and prior contain an arbitrary code execution vulnerability that could allow a local attacker to execute code or modify arbitrary memory with elevated privileges This vulnerability is due to a failure to properly validate input passed to kernel system calls from applications running in usersp ...
Cisco: Cisco Unified IP Phones Local Kernel System Call Input Validation Vulnerability
Cisco Unified IP Phones 7900 Series versions 93(1)SR1 and prior contain an arbitrary code execution vulnerability that could allow a local attacker to execute code or modify arbitrary memory with elevated privileges This vulnerability is due to a failure to properly validate input passed to kernel system calls from applications running in usersp ...

References

CWE-20http://events.ccc.de/congress/2012/Fahrplan/events/5400.en.htmlhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130109-uipphonehttps://nvd.nist.govhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130109-uipphone
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907hardcodedinjectCVE-2024-20359CVE-2024-2467CVE-2024-4077CVE-2024-22391cameraCVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook