CVE-2007-1072

high

Description

The command line interface (CLI) in Cisco Unified IP Phone 7906G, 7911G, 7941G, 7961G, 7970G, and 7971G, with firmware 8.0(4)SR1 and earlier allows local users to obtain privileges or cause a denial of service via unspecified vectors. NOTE: this issue can be leveraged remotely via CVE-2007-1063.

References

http://www.securityfocus.com/bid/22647

http://www.cisco.com/warp/public/707/cisco-sa-20070221-phone.shtml

http://www.cisco.com/warp/public/707/cisco-air-20070221-phone.shtml

http://secunia.com/advisories/24262

Details

Source: Mitre, NVD

Published: 2007-02-22

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High