Cisco Unified IP Phone Multiple Vulnerabilities

Multiple vulnerabilities have been identified in Cisco Unified IP Phones, which could be exploited by attackers to cause a denial of service or take complete control of an affected device.

1. A buffer overflow error when parsing DNS responses, which could be exploited by attackers to crash an affected device or execute arbitrary code.

2. An error when handling large ICMP echo request packets, which could be exploited to reboot a vulnerable device, creating a denial of service condition.

3. An error when handling a specially crafted HTTP request sent to port 80/TCP, which could be exploited to reboot a vulnerable device, creating a denial of service condition.

4. A buffer overflow error in the internal Secure Shell (SSH) server when processing malformed packets, which could be exploited by unauthenticated attackers to crash a vulnerable device or execute arbitrary code.

5. A buffer overflow error when handling SIP messages with malformed Multipurpose Internet Mail Extensions (MIME) encoded data, which could be exploited by attackers to crash a vulnerable device or execute arbitrary code.

6. A buffer overflow error in the internal telnet server (disabled by default) when processing malformed packets, which could be exploited by attackers to crash a vulnerable device or execute arbitrary code.

7. A heap overflow error when handling a malformed challenge/response message from a SIP proxy, which could be exploited by attackers to crash a vulnerable device or execute arbitrary code.