Cisco IP Phones 7902/7905/7912, ATA 186/188, Unity Express, ACNS, and Subscriber Edge Services Manager (SESM) allows remote attackers to cause a denial of service (crash or instability) via a compressed DNS packet with a label length byte with an incorrect offset.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Application_and_content_networking_software | Cisco | * | * |
| Ata | Cisco | 186 (including) | 186 (including) |
| Ata | Cisco | 188 (including) | 188 (including) |
| Subscriber_edge_services_manager | Cisco | * | * |
| Ip_phone_7902 | Cisco | * | * |
| Ip_phone_7905 | Cisco | * | * |
| Ip_phone_7912 | Cisco | * | * |
| Unity_express | Cisco | * | * |
References
- http://secunia.com/advisories/15472
- http://securitytracker.com/id?1014043
- http://securitytracker.com/id?1014044
- http://securitytracker.com/id?1014045
- http://securitytracker.com/id?1014046
- http://securitytracker.com/id?1015975
- http://www.cisco.com/warp/public/707/cisco-sn-20050524-dns.shtml
- http://www.niscc.gov.uk/niscc/docs/al-20050524-00433.html
- http://www.niscc.gov.uk/niscc/docs/re-20050524-00432.pdf?lang=en
- http://www.osvdb.org/19003
- http://www.securityfocus.com/bid/13729
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20712
- http://secunia.com/advisories/15472
- http://securitytracker.com/id?1014043
- http://securitytracker.com/id?1014044
- http://securitytracker.com/id?1014045
- http://securitytracker.com/id?1014046
- http://securitytracker.com/id?1015975
- http://www.cisco.com/warp/public/707/cisco-sn-20050524-dns.shtml
- http://www.niscc.gov.uk/niscc/docs/al-20050524-00433.html
- http://www.niscc.gov.uk/niscc/docs/re-20050524-00432.pdf?lang=en
- http://www.osvdb.org/19003
- http://www.securityfocus.com/bid/13729
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20712