Lucene search

K
cve[email protected]CVE-2012-5445
HistoryDec 28, 2012 - 11:48 a.m.

CVE-2012-5445

2012-12-2811:48:44
CWE-20
web.nvd.nist.gov
24
cisco
native unix
cnu
cisco unified ip phone
tnp phones
cve-2012-5445
vulnerability
arbitrary code execution
denial of service
nvd

7.6 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:S/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

12.5%

The kernel in Cisco Native Unix (CNU) on Cisco Unified IP Phone 7900 series devices (aka TNP phones) with software before 9.3.1-ES10 does not properly validate unspecified system calls, which allows attackers to execute arbitrary code or cause a denial of service (memory overwrite) via a crafted binary.

Affected configurations

NVD
Node
ciscoskinny_client_control_protocol_softwareRange9.2\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.0\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.0\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.0\(2\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch1.0\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.0\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.0\(5\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.0\(9\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.1\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.2\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.3\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.3\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.3\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.3\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.3\(4\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch1.4\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.4\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch2.0\(0\)
OR
ciscoskinny_client_control_protocol_softwareMatch2.0\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.0
OR
ciscoskinny_client_control_protocol_softwareMatch3.0\(0\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.0\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.0\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.1
OR
ciscoskinny_client_control_protocol_softwareMatch3.1\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.1\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.1\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.1\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.1\(6\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.1\(10\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.1\(11\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(5\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(6\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(6a\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(7\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(8\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(9\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(10\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(11\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(12\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(13\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(14\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(15\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(5\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(6\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(7\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(8\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(9\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(10\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(11\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(12\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(13\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(14\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(15\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(16\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(20\)
OR
ciscoskinny_client_control_protocol_softwareMatch4.0\(0\)
OR
ciscoskinny_client_control_protocol_softwareMatch4.1\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch4.1\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch4.1\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch4.1\(5\)
OR
ciscoskinny_client_control_protocol_softwareMatch4.1\(6\)
OR
ciscoskinny_client_control_protocol_softwareMatch4.1\(7\)
OR
ciscoskinny_client_control_protocol_softwareMatch5.0\(0\)
OR
ciscoskinny_client_control_protocol_softwareMatch5.0\(1a\)
OR
ciscoskinny_client_control_protocol_softwareMatch5.0\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch5.0\(5\)
OR
ciscoskinny_client_control_protocol_softwareMatch5.0\(6\)
OR
ciscoskinny_client_control_protocol_softwareMatch5.0\(7\)
OR
ciscoskinny_client_control_protocol_softwareMatch6.0\(0\)
OR
ciscoskinny_client_control_protocol_softwareMatch6.0\(2\)sr2
OR
ciscoskinny_client_control_protocol_softwareMatch6.0\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch6.0\(3\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch6.0\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch6.0\(5\)
OR
ciscoskinny_client_control_protocol_softwareMatch6.1\(0\)
OR
ciscoskinny_client_control_protocol_softwareMatch6.1\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch7.0\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch7.0\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch7.0\(2\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch7.0\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch7.1\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch7.2\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch7.2\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch7.2\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(4\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(4\)sr3a
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(5\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(6\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(7\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(8\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(9\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(10\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.1\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.1\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.2\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.2\(2\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch8.2\(2\)sr2
OR
ciscoskinny_client_control_protocol_softwareMatch8.2\(2\)sr3
OR
ciscoskinny_client_control_protocol_softwareMatch8.2\(2\)sr4
OR
ciscoskinny_client_control_protocol_softwareMatch8.3\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.3\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.3\(2\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch8.3\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.3\(3\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch8.3\(3\)sr2
OR
ciscoskinny_client_control_protocol_softwareMatch8.3\(5\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.4\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.4\(1\)sr2
OR
ciscoskinny_client_control_protocol_softwareMatch8.4\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.4\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.4\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.5\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.5\(2\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch8.5\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.5\(3\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch8.5\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.70
OR
ciscoskinny_client_control_protocol_softwareMatch9.0\(2\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch9.0\(2\)sr2
OR
ciscoskinny_client_control_protocol_softwareMatch9.0\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch9.0\(3b\)
OR
ciscoskinny_client_control_protocol_softwareMatch9.1\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch9.1\(1\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch9.1\(1\)sr2
OR
ciscoskinny_client_control_protocol_softwareMatch9.2\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch9.2\(2\)
AND
ciscounified_ip_phoneMatch7906g
OR
ciscounified_ip_phoneMatch7911g
OR
ciscounified_ip_phoneMatch7935
OR
ciscounified_ip_phoneMatch7936
OR
ciscounified_ip_phoneMatch7940
OR
ciscounified_ip_phoneMatch7940g
OR
ciscounified_ip_phoneMatch7941g
OR
ciscounified_ip_phoneMatch7960
OR
ciscounified_ip_phoneMatch7960g
OR
ciscounified_ip_phoneMatch7961g
OR
ciscounified_ip_phoneMatch7970g
OR
ciscounified_ip_phoneMatch7971g
OR
ciscounified_ip_phone_7906gMatch7911g
OR
ciscounified_ip_phone_7906gMatch7941g
OR
ciscounified_ip_phone_7906gMatch7961g
OR
ciscounified_ip_phone_7906gMatch7970g
OR
ciscounified_ip_phone_7906gMatch7971g

7.6 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:S/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

12.5%