CVE-2018-0332 — HIGH (7.5) — White Hats Nepal

Vulnerability Description

A vulnerability in the Session Initiation Protocol (SIP) ingress packet processing of Cisco Unified IP Phone software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to a lack of flow-control mechanisms in the software. An attacker could exploit this vulnerability by sending high volumes of SIP INVITE traffic to the targeted device. Successful exploitation could allow the attacker to cause a disruption of services on the targeted IP phone. Cisco Bug IDs: CSCve10064, CSCve14617, CSCve14638, CSCve14683, CSCve20812, CSCve20926, CSCve20945.

CVSS Score

7.5

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Cisco	Unified Ip Phone Firmware	9.9\(9.99002.1\)
Cisco	Unified Ip Phone 9951	-
Cisco	Unified Ip Phone 9971	-
Cisco	Unified Ip Phone 7906G	-
Cisco	Unified Ip Phone 7911G	-
Cisco	Unified Ip Phone 7912G	-
Cisco	Unified Ip Phone 7931G	-
Cisco	Unified Ip Phone 7940G	-
Cisco	Unified Ip Phone 7941G	-
Cisco	Unified Ip Phone 7942G	-
Cisco	Unified Ip Phone 7945G	-
Cisco	Unified Ip Phone 7960G	-
Cisco	Unified Ip Phone 7961G	-
Cisco	Unified Ip Phone 7962G	-
Cisco	Unified Ip Phone 7965G	-
Cisco	Unified Ip Phone 7975G	-
Cisco	Ip Phone Firmware	9.4\(2\)sr3.1
Cisco	Ip Phone 7811	-
Cisco	Ip Phone 7821	-
Cisco	Ip Phone 7841	-

Related Weaknesses (CWE)

CWE-399

References

http://www.securityfocus.com/bid/104445Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1041074Third Party AdvisoryVDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
http://www.securityfocus.com/bid/104445Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1041074Third Party AdvisoryVDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory

FAQ

What is CVE-2018-0332?

CVE-2018-0332 is a vulnerability with a CVSS score of 7.5 (HIGH). A vulnerability in the Session Initiation Protocol (SIP) ingress packet processing of Cisco Unified IP Phone software could allow an unauthenticated, remote attacker to cause a denial of service (DoS)...

How severe is CVE-2018-0332?

CVE-2018-0332 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-0332?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Unified Ip Phone Firmware, Cisco Unified Ip Phone 9951, Cisco Unified Ip Phone 9971, Cisco Unified Ip Phone 7906G, Cisco Unified Ip Phone 7911G.