Vigil@nce - Cisco 9900 Series Phone: file reading
August 2013 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can change the access path in a url of a Cisco 9900
Series Phone, in order to download a file from the system.
Impacted products: Cisco IP Phone
Severity: 2/4
Creation date: 17/07/2013
DESCRIPTION OF THE VULNERABILITY
An attacker can change the access path in a url of a Cisco 9900
Series Phone, in order to download a file from the system.
Technical details are unknown.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-9900-Series-Phone-file-reading-13138