Cisco 79xx IP Phone SYN Flood Device Reboot Remote DoS

2006-01-10T08:18:12
ID OSVDB:22469
Type osvdb
Reporter Knud Erik Højgaard()
Modified 2006-01-10T08:18:12

Description

Vulnerability Description

Cisco 79xx IP phones contain a flaw that may allow a remote denial of service. The issue is triggered when an attacker initiates a SYN flood against the phone, and will result in loss of availability for the device.

Solution Description

Upgrade to version 7.1(0.10) or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Cisco 79xx IP phones contain a flaw that may allow a remote denial of service. The issue is triggered when an attacker initiates a SYN flood against the phone, and will result in loss of availability for the device.

References:

Security Tracker: 1015488 Secunia Advisory ID:18479 Other Advisory URL: http://www.cisco.com/warp/public/707/cisco-response-20060113-ip-phones.shtml Keyword: CSCef33398 Generic Exploit URL: http://www.milw0rm.com/id.php?id=1411 FrSIRT Advisory: ADV-2006-0202 CVE-2006-0179 Bugtraq ID: 16200