Sign-up

ID

VAR-200901-0453


CVE

CVE-2008-4444


TITLE

Cisco Unified IP Phone Service disruption in (DoS) Or arbitrary code execution vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2009-001688

DESCRIPTION

Cisco Unified IP Phone (aka SIP phone) 7960G and 7940G with firmware P0S3-08-9-00 and possibly other versions before 8.10 allows remote attackers to cause a denial of service (device reboot) or possibly execute arbitrary code via a Realtime Transport Protocol (RTP) packet with malformed headers. Cisco Unified IP Phone 7960G and 7940G are prone to a denial-of-service vulnerability An attacker can exploit this issue to cause the affected phones to reboot, denying service to legitimate users. Given the nature of this issue, the attacker may also be able to run arbitrary code, but this has not been confirmed. Cisco Unified IP Phone is a set of unified IP phone solutions of Cisco (Cisco). Once the call is established, the media content is carried by the RTP protocol. Cisco released a patched firmware on October 21, 2008 which is described in the bug identifier CSCsu22285 (Cisco Unified IP Phone 7960G and 7940G (SIP) Release Notes for Firmware Release 8.10). Credits: -------- * This vulnerability was discovered by Gabriel Campana and Laurent Butti from France Telecom / Orange

Trust: 2.07

sources: NVD: CVE-2008-4444 // JVNDB: JVNDB-2009-001688 // BID: 33264 // VULHUB: VHN-34569 // PACKETSTORM: 73908

AFFECTED PRODUCTS

vendor:ciscomodel:unified ip phone 7940gscope:eqversion:*

Trust: 1.0

vendor:ciscomodel:unified ip phone 7960gscope:eqversion:*

Trust: 1.0

vendor:ciscomodel:unified ip phone 7960gscope: - version: -

Trust: 0.9

vendor:ciscomodel:unified ip phone 7940gscope: - version: -

Trust: 0.9

vendor:ciscomodel:unified ip phonescope:eqversion:7940g

Trust: 0.8

vendor:ciscomodel:unified ip phonescope:eqversion:7960g

Trust: 0.8

sources: BID: 33264 // JVNDB: JVNDB-2009-001688 // CNNVD: CNNVD-200901-201 // NVD: CVE-2008-4444

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2008-4444
value: HIGH

Trust: 1.0

NVD: CVE-2008-4444
value: HIGH

Trust: 0.8

CNNVD: CNNVD-200901-201
value: HIGH

Trust: 0.6

VULHUB: VHN-34569
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2008-4444
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:M/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-34569
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:M/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-34569 // JVNDB: JVNDB-2009-001688 // CNNVD: CNNVD-200901-201 // NVD: CVE-2008-4444

PROBLEMTYPE DATA

problemtype:CWE-20

Trust: 1.9

sources: VULHUB: VHN-34569 // JVNDB: JVNDB-2009-001688 // NVD: CVE-2008-4444

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200901-201

TYPE

input validation

Trust: 0.6

sources: CNNVD: CNNVD-200901-201

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2009-001688

EXPLOIT AVAILABILITY
sources:
            
            
            VULHUB: VHN-34569

PATCH
title:Top Pageurl:http://www.cisco.com/
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2009-001688

EXTERNAL IDS
db:NVDid:CVE-2008-4444
Trust: 2.9
db:BIDid:33264
Trust: 2.0
db:SREASONid:4917
Trust: 1.7
db:JVNDBid:JVNDB-2009-001688
Trust: 0.8
db:CNNVDid:CNNVD-200901-201
Trust: 0.7
db:BUGTRAQid:20090114 CISCO UNIFIED IP PHONE 7960G AND 7940G (SIP) RTP HEADER VULNERABILITY
Trust: 0.6
db:XFid:47948
Trust: 0.6
db:PACKETSTORMid:73908
Trust: 0.2
db:VULHUBid:VHN-34569
Trust: 0.1
sources:
            
            
            VULHUB: VHN-34569 // 
            
            
            
            BID: 33264 // 
            
            
            
            JVNDB: JVNDB-2009-001688 // 
            
            
            
            PACKETSTORM: 73908 // 
            
            
            
            CNNVD: CNNVD-200901-201 // 
            
            
            
            NVD: CVE-2008-4444

REFERENCES
url:http://www.securityfocus.com/bid/33264
Trust: 1.7
url:http://www.cisco.com/en/us/docs/voice_ip_comm/cuipph/7960g_7940g/firmware/sip/8_10/english/release/notes/796040sip_810.html
Trust: 1.7
url:http://securityreason.com/securityalert/4917
Trust: 1.7
url:http://www.securityfocus.com/archive/1/500059/100/0/threaded
Trust: 1.1
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/47948
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-4444
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2008-4444
Trust: 0.8
url:http://xforce.iss.net/xforce/xfdb/47948
Trust: 0.6
url:http://www.securityfocus.com/archive/1/archive/1/500059/100/0/threaded
Trust: 0.6
url:http://www.cisco.com/en/us/products/hw/phones/ps379/index.html
Trust: 0.3
url:/archive/1/500059
Trust: 0.3
url:https://nvd.nist.gov/vuln/detail/cve-2008-4444
Trust: 0.1
sources:
            
            
            VULHUB: VHN-34569 // 
            
            
            
            BID: 33264 // 
            
            
            
            JVNDB: JVNDB-2009-001688 // 
            
            
            
            PACKETSTORM: 73908 // 
            
            
            
            CNNVD: CNNVD-200901-201 // 
            
            
            
            NVD: CVE-2008-4444

CREDITS
Laurent Butti laurent.butti@orange-ftgroup.com
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-200901-201

SOURCES
db:VULHUBid:VHN-34569
db:BIDid:33264
db:JVNDBid:JVNDB-2009-001688
db:PACKETSTORMid:73908
db:CNNVDid:CNNVD-200901-201
db:NVDid:CVE-2008-4444

LAST UPDATE DATE
2024-11-23T22:35:54.737000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-34569date:2018-10-11T00:00:00
db:BIDid:33264date:2009-01-14T18:12:00
db:JVNDBid:JVNDB-2009-001688date:2009-07-08T00:00:00
db:CNNVDid:CNNVD-200901-201date:2009-01-29T00:00:00
db:NVDid:CVE-2008-4444date:2024-11-21T00:51:41.480

SOURCES RELEASE DATE
db:VULHUBid:VHN-34569date:2009-01-16T00:00:00
db:BIDid:33264date:2009-01-14T00:00:00
db:JVNDBid:JVNDB-2009-001688date:2009-07-08T00:00:00
db:PACKETSTORMid:73908date:2009-01-15T01:10:36
db:CNNVDid:CNNVD-200901-201date:2009-01-16T00:00:00
db:NVDid:CVE-2008-4444date:2009-01-16T21:30:03.313