Sign-up

ID

VAR-200511-0314


CVE

CVE-2005-3804


TITLE

Cisco 7920 wireless IP Phone open UDP Port vulnerability

Trust: 1.0

sources: IVD: 7d72a49e-463f-11e9-b675-000c29342cb1 // IVD: 64304d72-2355-11e6-abef-000c29c66e3d // CNVD: CNVD-2005-4048

DESCRIPTION

Cisco IP Phone (VoIP) 7920 1.0(8) listens to UDP port 17185 to support a VxWorks debugger, which allows remote attackers to obtain sensitive information and cause a denial of service. The Cisco 7920 wireless IP phone can provide Voice Over IP services over an IEEE 802.11b Wi-Fi network, which is similar to a cordless phone. 1) The SNMP service that runs on the IP phone uses fixed read-only and read-write community strings of "public" and "private", which cannot be changed by the user. This can be exploited to retrieve and modify the device configuration, including stored user data such as phone book entries by sending SNMP GetRequest or SetRequest to phone. SOLUTION: Apply firmware update. http://www.cisco.com/warp/public/707/cisco-sa-20051116-7920.shtml#software PROVIDED AND/OR DISCOVERED BY: Reported by vendor. ORIGINAL ADVISORY: Cisco: http://www.cisco.com/warp/public/707/cisco-sa-20051116-7920.shtml ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 2.25

sources: NVD: CVE-2005-3804 // CNVD: CNVD-2005-4048 // BID: 15456 // IVD: 7d72a49e-463f-11e9-b675-000c29342cb1 // IVD: 64304d72-2355-11e6-abef-000c29c66e3d // VULHUB: VHN-15012 // PACKETSTORM: 41612

IOT TAXONOMY

category:['IoT', 'ICS']sub_category: -

Trust: 0.6

category:['ICS']sub_category: -

Trust: 0.4

sources: IVD: 7d72a49e-463f-11e9-b675-000c29342cb1 // IVD: 64304d72-2355-11e6-abef-000c29c66e3d // CNVD: CNVD-2005-4048

AFFECTED PRODUCTS

vendor:ciscomodel:7920 wireless ip phonescope:eqversion:2.0

Trust: 1.6

vendor:ciscomodel:7920 wireless ip phonescope:eqversion:1.0\(8\)

Trust: 1.6

vendor:nonemodel: - scope: - version: -

Trust: 0.6

vendor:7920 ip phonemodel: - scope:eqversion:1.0(8)

Trust: 0.4

vendor:7920 ip phonemodel: - scope:eqversion:2.0

Trust: 0.4

vendor:ciscomodel:wireless ip phonescope:eqversion:79202.0

Trust: 0.3

vendor:ciscomodel:wireless ip phonescope:eqversion:79201.0(8)

Trust: 0.3

vendor:ciscomodel:wireless ip phonescope:neversion:79202.01

Trust: 0.3

sources: IVD: 7d72a49e-463f-11e9-b675-000c29342cb1 // IVD: 64304d72-2355-11e6-abef-000c29c66e3d // CNVD: CNVD-2005-4048 // BID: 15456 // CNNVD: CNNVD-200511-380 // NVD: CVE-2005-3804

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2005-3804
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-200511-380
value: MEDIUM

Trust: 0.6

IVD: 7d72a49e-463f-11e9-b675-000c29342cb1
value: MEDIUM

Trust: 0.2

IVD: 64304d72-2355-11e6-abef-000c29c66e3d
value: MEDIUM

Trust: 0.2

VULHUB: VHN-15012
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2005-3804
severity: MEDIUM
baseScore: 6.4
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

IVD: 7d72a49e-463f-11e9-b675-000c29342cb1
severity: MEDIUM
baseScore: 6.4
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

IVD: 64304d72-2355-11e6-abef-000c29c66e3d
severity: MEDIUM
baseScore: 6.4
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

VULHUB: VHN-15012
severity: MEDIUM
baseScore: 6.4
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: IVD: 7d72a49e-463f-11e9-b675-000c29342cb1 // IVD: 64304d72-2355-11e6-abef-000c29c66e3d // VULHUB: VHN-15012 // CNNVD: CNNVD-200511-380 // NVD: CVE-2005-3804

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2005-3804

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200511-380

TYPE

Design error

Trust: 1.3

sources: IVD: 7d72a49e-463f-11e9-b675-000c29342cb1 // IVD: 64304d72-2355-11e6-abef-000c29c66e3d // BID: 15456 // CNNVD: CNNVD-200511-380

EXTERNAL IDS

db:NVDid:CVE-2005-3804

Trust: 2.7

db:BIDid:15456

Trust: 2.0

db:SECUNIAid:17604

Trust: 1.8

db:SECTRACKid:1015232

Trust: 1.7

db:CNNVDid:CNNVD-200511-380

Trust: 1.1

db:CNVDid:CNVD-2005-4048

Trust: 1.0

db:CISCOid:20051116 FIXED SNMP COMMUNITIES AND OPEN UDP PORT IN CISCO 7920 WIRELESS IP PHONE

Trust: 0.6

db:XFid:23068

Trust: 0.6

db:IVDid:7D72A49E-463F-11E9-B675-000C29342CB1

Trust: 0.2

db:IVDid:64304D72-2355-11E6-ABEF-000C29C66E3D

Trust: 0.2

db:VULHUBid:VHN-15012

Trust: 0.1

db:PACKETSTORMid:41612

Trust: 0.1

sources: IVD: 7d72a49e-463f-11e9-b675-000c29342cb1 // IVD: 64304d72-2355-11e6-abef-000c29c66e3d // CNVD: CNVD-2005-4048 // VULHUB: VHN-15012 // BID: 15456 // PACKETSTORM: 41612 // CNNVD: CNNVD-200511-380 // NVD: CVE-2005-3804

REFERENCES

url:http://www.cisco.com/warp/public/707/cisco-sa-20051116-7920.shtml

Trust: 2.1

url:http://secunia.com/advisories/17604/

Trust: 1.8

url:http://www.securityfocus.com/bid/15456

Trust: 1.7

url:http://securitytracker.com/id?1015232

Trust: 1.7

url:https://exchange.xforce.ibmcloud.com/vulnerabilities/23068

Trust: 1.1

url:http://xforce.iss.net/xforce/xfdb/23068

Trust: 0.6

url:http://www.cisco.com/en/us/products/hw/phones/ps379/ps5056/index.html

Trust: 0.3

url:http://secunia.com/secunia_security_advisories/

Trust: 0.1

url:http://secunia.com/about_secunia_advisories/

Trust: 0.1

url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

Trust: 0.1

url:http://www.cisco.com/warp/public/707/cisco-sa-20051116-7920.shtml#software

Trust: 0.1

url:http://secunia.com/product/2809/

Trust: 0.1

sources: VULHUB: VHN-15012 // BID: 15456 // PACKETSTORM: 41612 // CNNVD: CNNVD-200511-380 // NVD: CVE-2005-3804

CREDITS

Shawn Merdinger shawnmer@gmail.com

Trust: 0.6

sources: CNNVD: CNNVD-200511-380

SOURCES

db:IVDid:7d72a49e-463f-11e9-b675-000c29342cb1
db:IVDid:64304d72-2355-11e6-abef-000c29c66e3d
db:CNVDid:CNVD-2005-4048
db:VULHUBid:VHN-15012
db:BIDid:15456
db:PACKETSTORMid:41612
db:CNNVDid:CNNVD-200511-380
db:NVDid:CVE-2005-3804

LAST UPDATE DATE

2024-08-14T14:42:12.671000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2005-4048date:2005-11-16T00:00:00
db:VULHUBid:VHN-15012date:2017-07-11T00:00:00
db:BIDid:15456date:2005-11-16T00:00:00
db:CNNVDid:CNNVD-200511-380date:2005-11-29T00:00:00
db:NVDid:CVE-2005-3804date:2017-07-11T01:33:19.173

SOURCES RELEASE DATE

db:IVDid:7d72a49e-463f-11e9-b675-000c29342cb1date:2005-11-16T00:00:00
db:IVDid:64304d72-2355-11e6-abef-000c29c66e3ddate:2005-11-16T00:00:00
db:CNVDid:CNVD-2005-4048date:2005-11-16T00:00:00
db:VULHUBid:VHN-15012date:2005-11-24T00:00:00
db:BIDid:15456date:2005-11-16T00:00:00
db:PACKETSTORMid:41612date:2005-11-19T21:56:12
db:CNNVDid:CNNVD-200511-380date:2005-11-24T00:00:00
db:NVDid:CVE-2005-3804date:2005-11-24T11:03:00