CVE-2015-0600 — MEDIUM (5.0)

Q: What is CVE-2015-0600?

CVE-2015-0600 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The mobility extension on Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier allows remote attackers to cause a denial of service (logoff) via crafted packets, aka Bug ID CSCuq12139.

Q: How severe is CVE-2015-0600?

CVE-2015-0600 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2015-0600?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Unified Ip Phones 9900 Series Firmware, Cisco Unified Ip Phone 9951, Cisco Unified Ip Phone 9971.

Vulnerability Description

The mobility extension on Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier allows remote attackers to cause a denial of service (logoff) via crafted packets, aka Bug ID CSCuq12139.

CVSS Score

5.0

MEDIUM

AV:N/AC:L/Au:N/C:N/I:N/A:P

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Cisco	Unified Ip Phones 9900 Series Firmware	<= 9.4\(.1\)
Cisco	Unified Ip Phone 9951	All versions
Cisco	Unified Ip Phone 9971	All versions

Related Weaknesses (CWE)

CWE-20

References

FAQ

What is CVE-2015-0600?

CVE-2015-0600 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The mobility extension on Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier allows remote attackers to cause a denial of service (logoff) via crafted packets, aka Bug ID CSCuq12139.

How severe is CVE-2015-0600?

CVE-2015-0600 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-0600?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Unified Ip Phones 9900 Series Firmware, Cisco Unified Ip Phone 9951, Cisco Unified Ip Phone 9971.