Lucene search

[email protected]CVE-2006-0179

HistoryJan 11, 2006 - 9:03 p.m.

CVE-2006-0179

2006-01-1121:03:00

CWE-119

[email protected]

web.nvd.nist.gov

cisco

ip phone

7940

denial of service

reboot

tcp syn

syn flood

security vulnerability

cve-2006-0179

7.7 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.036 Low

EPSS

Percentile

91.6%

JSON

The Cisco IP Phone 7940 allows remote attackers to cause a denial of service (reboot) via a large amount of TCP SYN packets (syn flood) to arbitrary ports, as demonstrated to port 80.

CPENameOperatorVersion
cisco:ip_phone_7940cisco ip phone 7940eq*

CPE	Name	Operator	Version
cisco:ip_phone_7940	cisco ip phone 7940	eq	*

References

downloads.securityfocus.com/vulnerabilities/exploits/cisco_ip7940_dos.pl

secunia.com/advisories/18479

securitytracker.com/id?1015488

www.cisco.com/warp/public/707/cisco-response-20060113-ip-phones.shtml

www.osvdb.org/22469

www.securityfocus.com/bid/16200

www.vupen.com/english/advisories/2006/0202

exchange.xforce.ibmcloud.com/vulnerabilities/24117

www.exploit-db.com/exploits/1411

7.7 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.036 Low

EPSS

Percentile

91.6%

JSON

Related for CVE-2006-0179

prion1