Details of VAR-200210-0182

ID

VAR-200210-0182

CVE

CVE-2002-0880

TITLE

Cisco IP Phone (VoIP) Vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200210-002

DESCRIPTION

Cisco IP Phone (VoIP) models 7910, 7940, and 7960 allow remote attackers to cause a denial of service (crash) via malformed packets as demonstrated by (1) "jolt", (2) "jolt2", (3) "raped", (4) "hping2", (5) "bloop", (6) "bubonic", (7) "mutant", (8) "trash", and (9) "trash2.". VoIP Phone CP-7940 is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause denial-of-service conditions. Cisco IP Phone (VoIP) 7910, 7940, and 7960 model versions are vulnerable

Trust: 1.26

sources: NVD: CVE-2002-0880 // BID: 89544 // VULHUB: VHN-5271

AFFECTED PRODUCTS

vendor:	cisco	model:	voip phone cp-7940	scope:	eq	version:	3.2	Trust: 1.9
vendor:	cisco	model:	voip phone cp-7940	scope:	eq	version:	3.1	Trust: 1.9
vendor:	cisco	model:	voip phone cp-7940	scope:	eq	version:	3.0	Trust: 1.9
vendor:	cisco	model:	skinny client control protocol software	scope:	eq	version:	3.0	Trust: 1.0
vendor:	cisco	model:	skinny client control protocol software	scope:	eq	version:	3.2	Trust: 1.0
vendor:	cisco	model:	skinny client control protocol software	scope:	eq	version:	3.1	Trust: 1.0
vendor:	cisco	model:	voip phone cp-7960	scope:	eq	version:	3.2	Trust: 0.9
vendor:	cisco	model:	voip phone cp-7960	scope:	eq	version:	3.1	Trust: 0.9
vendor:	cisco	model:	voip phone cp-7960	scope:	eq	version:	3.0	Trust: 0.9
vendor:	cisco	model:	voip phone cp-7910	scope:	eq	version:	3.2	Trust: 0.9
vendor:	cisco	model:	voip phone cp-7910	scope:	eq	version:	3.1	Trust: 0.9
vendor:	cisco	model:	voip phone cp-7910	scope:	eq	version:	3.0	Trust: 0.9

sources: BID: 89544 // CNNVD: CNNVD-200210-002 // NVD: CVE-2002-0880

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2002-0880
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-200210-002
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-5271
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2002-0880
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-5271
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-5271 // CNNVD: CNNVD-200210-002 // NVD: CVE-2002-0880

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2002-0880

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200210-002

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200210-002

EXTERNAL IDS

db:	NVD	id:	CVE-2002-0880	Trust: 2.0
db:	CNNVD	id:	CNNVD-200210-002	Trust: 0.7
db:	CISCO	id:	20020522 MULTIPLE VULNERABILITIES IN CISCO IP TELEPHONES	Trust: 0.6
db:	BID	id:	89544	Trust: 0.4
db:	VULHUB	id:	VHN-5271	Trust: 0.1

sources: VULHUB: VHN-5271 // BID: 89544 // CNNVD: CNNVD-200210-002 // NVD: CVE-2002-0880

REFERENCES

url:

http://www.cisco.com/warp/public/707/multiple-ip-phone-vulnerabilities-pub.shtml

Trust: 3.0

sources: VULHUB: VHN-5271 // BID: 89544 // CNNVD: CNNVD-200210-002 // NVD: CVE-2002-0880

CREDITS

Unknown

Trust: 0.3

sources: BID: 89544

SOURCES

db:	VULHUB	id:	VHN-5271
db:	BID	id:	89544
db:	CNNVD	id:	CNNVD-200210-002
db:	NVD	id:	CVE-2002-0880

LAST UPDATE DATE

2024-11-22T23:03:16.271000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-5271	date:	2018-10-30T00:00:00
db:	BID	id:	89544	date:	2002-10-04T00:00:00
db:	CNNVD	id:	CNNVD-200210-002	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2002-0880	date:	2024-11-20T23:40:05.823

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-5271	date:	2002-10-04T00:00:00
db:	BID	id:	89544	date:	2002-10-04T00:00:00
db:	CNNVD	id:	CNNVD-200210-002	date:	2002-10-04T00:00:00
db:	NVD	id:	CVE-2002-0880	date:	2002-10-04T04:00:00