Published: 07/02/2015 Updated: 08/09/2017

CVSS v2 Base Score: 4.6 | Impact Score: 6.9 | Exploitability Score: 3.1

VMScore: 409

Vector: AV:L/AC:L/Au:S/C:N/I:N/A:C

Subscribe to Unified Ip Phones 9900 Series Firmware

Cisco Unified IP 9900 phones with firmware 9.4(.1) and previous versions use weak permissions for unspecified files, which allows local users to cause a denial of service (persistent hang or reboot) by writing to a phone's filesystem, aka Bug ID CSCup90474.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco unified_ip_phones_9900_series_firmware

A vulnerability in the Cisco Unified IP Phone 9900 Series could allow an authenticated, local attacker to cause a complete denial of service (DoS) on an affected device The vulnerability is due to insecure file permissions on some devices An attacker could exploit this vulnerability by writing to an affected device Insecure writes to an affecte ...

CWE-264 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0603 http://tools.cisco.com/security/center/viewAlert.x?alertId=37345 http://www.securityfocus.com/bid/72484 https://exchange.xforce.ibmcloud.com/vulnerabilities/100619 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20150204-CVE-2015-0603

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2015-0603

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect