Cisco Bug: CSCuq12139 - Cisco Unified IP Phone 9900 Series Mobility Extension Availability Vuln
Aug 06, 2018
- Cisco Unified IP Phones 9900 Series
Known Affected Releases
Symptom: A vulnerability in the mobility extension support of Cisco Unified IP Phone 9900 Series could allow an unauthenticated, remote attacker to log off the mobility extension user. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending crafted packets to an affected device. An exploit could allow the attacker to cause a denial of service (DoS) condition in which the user is no longer associated with the device and must log in again. Conditions: Device configured with default configuration.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases