CVE-2017-12219
First published: Thu Sep 21 2017(Updated: )
A vulnerability in the handling of IP fragments for the Cisco Small Business SPA300, SPA500, and SPA51x Series IP Phones could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to the inability to handle many large IP fragments for reassembly in a short duration. An attacker could exploit this vulnerability by sending a crafted stream of IP fragments to the targeted device. An exploit could allow the attacker to cause a DoS condition when the device unexpectedly reloads. Cisco Bug IDs: CSCve82586.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco SPA 301 Firmware | =7.6.2 | |
| Cisco SPA 301 | ||
| Cisco SPA 303 Firmware | =7.6.2 | |
| Cisco SPA 303 firmware | ||
| Cisco SPA 500 Series IP Phone Firmware | =7.6.2 | |
| Cisco SPA 500ds firmware | ||
| 70mai A500s Firmware | =7.6.2 | |
| Cisco SPA 500s firmware | ||
| Cisco SPA 501G Firmware | =7.6.2 | |
| Cisco SPA 500 Series | ||
| Cisco SPA 502G Firmware | =7.6.2 | |
| Cisco SPA 502g firmware | ||
| Cisco SPA504G | =7.6.2 | |
| Cisco SPA504G | ||
| Cisco SPA508G Firmware | =7.6.2 | |
| Cisco SPA 500 Series | ||
| Cisco SPA509G Firmware | =7.6.2 | |
| Cisco SPA 509g firmware | ||
| Cisco SPA 512G Firmware | =7.6.2 | |
| Cisco SPA 512G 1-line IP Phone | ||
| Cisco SPA 514G Firmware | =7.6.2 | |
| Cisco SPA 514g firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-12219?
The severity of CVE-2017-12219 is classified as medium, as it can lead to a denial of service condition.
How do I fix CVE-2017-12219?
To fix CVE-2017-12219, upgrade the firmware of the affected Cisco IP phones to version 7.6.2 or higher.
What devices are affected by CVE-2017-12219?
CVE-2017-12219 affects Cisco Small Business SPA300, SPA500, and SPA51x Series IP Phones running firmware version 7.6.2.
Can CVE-2017-12219 be exploited remotely?
Yes, CVE-2017-12219 can be exploited by an unauthenticated remote attacker.
What type of vulnerability is CVE-2017-12219?
CVE-2017-12219 is a denial of service (DoS) vulnerability caused by improper handling of IP fragments.
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/author
- agent/weakness
- agent/severity
- agent/references
- agent/description
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco spa 301 firmware
- version/cisco spa 301 firmware/7.6.2
- canonical/cisco spa 301
- canonical/cisco spa 303 firmware
- version/cisco spa 303 firmware/7.6.2
- canonical/cisco spa 500 series ip phone firmware
- version/cisco spa 500 series ip phone firmware/7.6.2
- canonical/cisco spa 500ds firmware
- canonical/70mai a500s firmware
- version/70mai a500s firmware/7.6.2
- canonical/cisco spa 500s firmware
- canonical/cisco spa 501g firmware
- version/cisco spa 501g firmware/7.6.2
- canonical/cisco spa 500 series
- canonical/cisco spa 502g firmware
- version/cisco spa 502g firmware/7.6.2
- canonical/cisco spa504g
- version/cisco spa504g/7.6.2
- canonical/cisco spa508g firmware
- version/cisco spa508g firmware/7.6.2
- canonical/cisco spa509g firmware
- version/cisco spa509g firmware/7.6.2
- canonical/cisco spa 509g firmware
- canonical/cisco spa 512g firmware
- version/cisco spa 512g firmware/7.6.2
- canonical/cisco spa 512g 1-line ip phone
- canonical/cisco spa 514g firmware
- version/cisco spa 514g firmware/7.6.2