Vigil@nce - Cisco Unified IP Phones: changing the configuration
May 2012 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
When a Cisco Unified IP Phone downloads its configuration, a local
attacker can force it to download a malicious configuration.
Severity: 1/4
Creation date: 07/05/2012
IMPACTED PRODUCTS
– Cisco Unified IP Phone
DESCRIPTION OF THE VULNERABILITY
When a Cisco Unified IP Phone downloads its configuration, a local
attacker can force it to download a malicious configuration.
Technical details are unknown.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-Unified-IP-Phones-changing-the-configuration-11590