CVE-2008-4444: Input Validation
First published: Fri Jan 16 2009(Updated: )
Cisco Unified IP Phone (aka SIP phone) 7960G and 7940G with firmware P0S3-08-9-00 and possibly other versions before 8.10 allows remote attackers to cause a denial of service (device reboot) or possibly execute arbitrary code via a Realtime Transport Protocol (RTP) packet with malformed headers.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Unified Ip Phone 7940g | ||
| Cisco Unified IP Phone 7960G |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://securityreason.com/securityalert/4917
- http://www.cisco.com/en/US/docs/voice_ip_comm/cuipph/7960g_7940g/firmware/sip/8_10/english/release/notes/796040sip_810.html
- http://www.securityfocus.com/archive/1/500059/100/0/threaded
- http://www.securityfocus.com/bid/33264
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47948
- collector/nvd-index
- collector/nvd-historical
- agent/severity
- agent/author
- agent/type
- agent/weakness
- agent/references
- agent/description
- agent/event
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/cisco
- canonical/cisco unified ip phone 7940g
- canonical/cisco unified ip phone 7960g