Vigil@nce - Cisco SIP Phone 3905: denial of service
December 2015 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can send numerous data to Cisco SIP Phone 3905, in
order to trigger a denial of service.
– Impacted products: Cisco IP Phone.
– Severity: 1/4.
– Creation date: 03/12/2015.
DESCRIPTION OF THE VULNERABILITY
The Cisco SIP Phone 3905 product offers a listening service.
However, by sending numerous data to this service, its resources
reach a limit. Technical details are unknown.
An attacker can therefore send numerous data to Cisco SIP Phone
3905, in order to trigger a denial of service.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-SIP-Phone-3905-denial-of-service-18430