Detections
Analytics

Cisco IP Phone 7920 Debug Port Available (CVE-2005-3804)

medium Tenable OT Security Plugin ID 502740

Synopsis

The remote OT asset is affected by a vulnerability.

Description

Cisco IP Phone (VoIP) 7920 1.0(8) listens to UDP port 17185 to support a VxWorks debugger, which allows remote attackers to obtain sensitive information and cause a denial of service.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

Solution

Refer to the vendor advisory.

See Also

http://secunia.com/advisories/17604/

http://securitytracker.com/id?1015232

http://www.cisco.com/warp/public/707/cisco-sa-20051116-7920.shtml

http://www.securityfocus.com/bid/15456

https://exchange.xforce.ibmcloud.com/vulnerabilities/23068

Plugin Details

Severity: Medium

ID: 502740

Version: 1.2

Type: remote

Family: Tenable.ot

Published: 12/4/2024

Updated: 12/5/2024

Supported Sensors: Tenable OT Security

Risk Information

VPR

Risk Factor: Medium

Score: 5.2

CVSS v2

Risk Factor: Medium

Base Score: 6.4

Temporal Score: 4.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P

CVSS Score Source: CVE-2005-3804

Vulnerability Information

CPE: cpe:/h:cisco:7920_wireless_ip_phone:1.0%288%29, cpe:/h:cisco:7920_wireless_ip_phone:2.0

Required KB Items: Tenable.ot/Cisco

Exploit Ease: No known exploits are available

Patch Publication Date: 11/24/2005

Vulnerability Publication Date: 11/24/2005

Reference Information

CVE: CVE-2005-3804