Courses:

Offensive Countermeasures: The Art Of Active Defense: SANSFIRE June 15-16, Blackhat USA July 27-28 & 29-30


Defensive Countermeasures: Foundations for Becoming A Devious Defender: Blackhat USA July 27-28 & 29-30


Conferences:

Check out the entire PaulDotCom crew at BsidesRI June 14-15th!



Subscribe:

Blog:
Videos:
Podcast:


PaulDotCom EspaƱol


Hack Naked TV


Hack Naked At Night


Stogie Geeks


Sponsored By:


www.coresecurity.com


www.tenablesecurity.com


www.sans.org



Follow Us On:


twitter.com/pauldotcom

PaulDotCom YouTube Channel


Fixed SNMP Communities and Open UDP Port in Cisco 7920 Wireless IP Phone

By
Paul Asadoorian
on November 17, 2005 5:05 AM | | Comments (1)

"The Cisco 7920 Wireless IP Phone provides Voice Over IP service via IEEE 802.11b Wi-Fi networks and has a form-factor similar to a cordless phone. This product contains two vulnerabilities: The first vulnerability is an SNMP service with fixed community strings that allow remote users to read, write, and erase the configuration of an affected device. The second vulnerability is an open VxWorks Remote Debugger on UDP port 17185 that may allow an unauthenticated remote user to access debugging information or cause a denial of service."

So over the wireless network I can read the configuration of your phone, write a new configuration, wipe out the configuration, view all the debug output, or prevent your phone from working all together. Great! I can't wait until these come to market!

And another thing, shouldn't Cisco know how to secure SNMP by now? Fixed community strings? They should know better...

Full Article

.com

Categories:

1 Comments

By Betsy Markum on April 8, 2006 8:21 PM

I can't believe it, my co-worker just bought a car for $22541. Isn't that crazy!