Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2011-2545

Cross-site scripting (XSS) vulnerability in the SIP implementation on the Cisco SPA8000 and SPA8800 before 6.1.11, SPA2102 and SPA3102 before 5.2.13, and SPA 500 series IP phones before 7.4.9 allows remote attackers to inject arbitrary web script or HTML via the FROM field of an INVITE message, aka Bug IDs CSCtr27277, CSCtr27256, CSCtr27274, and CSCtr14715.

Published

2012-06-13T20:55:01.707

Last Modified

2025-04-11T00:51:21.963

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 4.3 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: PARTIAL
Availability Impact: NONE

Exploitability Score

8.6

Impact Score

2.9

Weaknesses

Type: Primary
CWE-79

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	cisco	spa8000_8-port_ip_telephony_gateway_firmware	≤ 6.1.10	Yes
Operating System	cisco	spa8000_8-port_ip_telephony_gateway_firmware	5.1.12	Yes
Operating System	cisco	spa8000_8-port_ip_telephony_gateway_firmware	6.1.3	Yes
Hardware	cisco	spa8000_8-port_ip_telephony_gateway	-	Yes
Operating System	cisco	spa8800_8-port_ip_telephony_gateway_firmware	≤ 6.1.7	Yes
Hardware	cisco	spa8800_ip_telephony_gateway	-	Yes
Operating System	cisco	spa2102_phone_adapter_with_router_firmware	≤ 5.2.12	Yes
Operating System	cisco	spa2102_phone_adapter_with_router_firmware	5.2.3	Yes
Operating System	cisco	spa2102_phone_adapter_with_router_firmware	5.2.5	Yes
Operating System	cisco	spa2102_phone_adapter_with_router_firmware	5.2.10	Yes
Hardware	cisco	spa2102_phone_adapter_with_router	-	Yes
Operating System	cisco	spa3102_voice_gateway_with_router_firmware	≤ 5.1.10	Yes
Operating System	cisco	spa3102_voice_gateway_with_router_firmware	3.3.6	Yes
Operating System	cisco	spa3102_voice_gateway_with_router_firmware	5.1.7	Yes
Hardware	cisco	spa3102_voice_gateway_with_router	-	Yes
Operating System	cisco	spa_500_series_ip_phone_firmware	≤ 7.4.8	Yes
Operating System	cisco	spa_500_series_ip_phone_firmware	7.3.7	Yes
Operating System	cisco	spa_500_series_ip_phone_firmware	7.4.3	Yes
Operating System	cisco	spa_500_series_ip_phone_firmware	7.4.4	Yes
Operating System	cisco	spa_500_series_ip_phone_firmware	7.4.6	Yes
Operating System	cisco	spa_500_series_ip_phone_firmware	7.4.7	Yes
Hardware	cisco	spa_501g_8-line_ip_phone	*	Yes
Hardware	cisco	spa_502g_1-line_ip_phone	*	Yes
Hardware	cisco	spa_504g_4-line_ip_phone	*	Yes
Hardware	cisco	spa_508g_8-line_ip_phone	*	Yes
Hardware	cisco	spa_509g_12-line_ip_phone	*	Yes
Hardware	cisco	spa_512g_1-line_ip_phone	*	Yes
Hardware	cisco	spa_514g_4-line_ip_phone	*	Yes
Hardware	cisco	spa_525g_5-line_ip_phone	*	Yes
Hardware	cisco	spa_525g2_5-line_ip_phone	*	Yes

References

http://tools.cisco.com/security/center/viewAlert.x?alertId=26037 Vendor Advisory ([email protected])
http://tools.cisco.com/security/center/viewAlert.x?alertId=26037 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)