Buffer overflow in Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SCCP and SIP firmware might allow remote attackers to execute arbitrary code via a crafted DNS response.
2008-02-15T02:00:00.000
2025-04-09T00:30:58.490
Deferred
CVSSv2: 10.0 (HIGH)
AV:N/AC:L/Au:N/C:C/I:C/A:C
10.0
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Hardware | cisco | unified_ip_phone | 7906g | No |
| Hardware | cisco | unified_ip_phone | 7911g | No |
| Hardware | cisco | unified_ip_phone | 7935 | No |
| Hardware | cisco | unified_ip_phone | 7936 | No |
| Hardware | cisco | unified_ip_phone | 7940 | No |
| Hardware | cisco | unified_ip_phone | 7940g | No |
| Hardware | cisco | unified_ip_phone | 7941g | No |
| Hardware | cisco | unified_ip_phone | 7960 | No |
| Hardware | cisco | unified_ip_phone | 7960g | No |
| Hardware | cisco | unified_ip_phone | 7961g | No |
| Hardware | cisco | unified_ip_phone | 7970g | No |
| Hardware | cisco | unified_ip_phone | 7971g | No |
| Application | cisco | skinny_client_control_protocol_\(sccp\)_firmware | * | Yes |
| Hardware | cisco | unified_ip_phone | 7940 | No |
| Hardware | cisco | unified_ip_phone | 7940g | No |
| Hardware | cisco | unified_ip_phone | 7960 | No |
| Hardware | cisco | unified_ip_phone | 7960g | No |
| Application | cisco | session_initiation_protocol_\(sip\)_firmware | * | Yes |