Guest

Preview Tool

Cisco Bug: CSCuq12139 - Cisco Unified IP Phone 9900 Series Mobility Extension Availability Vuln

Last Modified

Apr 28, 2016

Products (1)

  • Cisco Unified IP Phones 9900 Series

Known Affected Releases

9.3(4.24)

Description (partial)

Symptom:
A vulnerability in the mobility extension support of Cisco Unified IP Phone 9900 Series could allow an unauthenticated, remote attacker to log
off the mobility extension user.

The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending crafted
packets to an affected device. An exploit could allow the attacker to cause a denial of service (DoS) condition in which the user is no longer
associated with the device and must log in again.

Conditions:
Device configured with default configuration.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.