1. Home
  2. CVE Database
  3. CVE-2008-0526
HIGH · 7.8

CVE-2008-0526

Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SCCP firmware allows remote attackers to cause a denial of service (reboot) via a long ICMP echo request (ping) packet.

Vulnerability Description

Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SCCP firmware allows remote attackers to cause a denial of service (reboot) via a long ICMP echo request (ping) packet.

CVSS Score

7.8

HIGH

AV:N/AC:L/Au:N/C:N/I:N/A:C
Confidentiality
NONE
Integrity
NONE
Availability
COMPLETE

Affected Products

VendorProductVersions
CiscoUnified Ip Phone7906g
CiscoSkinny Client Control Protocol \(Sccp\) FirmwareAll versions
CiscoSession Initiation Protocol \(Sip\) FirmwareAll versions

Related Weaknesses (CWE)

CWE-20

References

FAQ

What is CVE-2008-0526?

CVE-2008-0526 is a vulnerability with a CVSS score of 7.8 (HIGH). Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SCCP firmware allows remote attackers to cause a denial of service (reboot) via a long ICMP echo request (ping) packet.

How severe is CVE-2008-0526?

CVE-2008-0526 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2008-0526?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Unified Ip Phone, Cisco Skinny Client Control Protocol \(Sccp\) Firmware, Cisco Session Initiation Protocol \(Sip\) Firmware.