Back to search
CVE-2012-5445
Published: Dec 28, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
The kernel in Cisco Native Unix (CNU) on Cisco Unified IP Phone 7900 series devices (aka TNP phones) with software before 9.3.1-ES10 does not properly validate unspecified system calls, which allows attackers to execute arbitrary code or cause a denial of service (memory overwrite) via a crafted binary.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20130109 Cisco Unified IP Phones Local Kernel System Call Input Validation Vulnerability
vendor-advisory
x_refsource_CISCO
http://events.ccc.de/congress/2012/Fahrplan/events/5400.en.html
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now