A vulnerability on Mitel 6800 Series and 6900 Series SIP Phones up to and including 6.3 SP3 HF4, 6900w Series SIP Phone up to and including 6.3.3, and 6970 Conference Unit up to and including 5.1.1 SP8 allows an authenticated malicious user to conduct a buffer overflow attack due to insufficient bounds checking and input sanitization. A successful exploit could allow an malicious user to gain access to sensitive information, modify system configuration or execute arbitrary commands within the context of the system.
Vulmon