Cisco ATA 187 Analog Telephone Adaptor Remote Access Vulnerability

2013-02-0616:00:00

tools.cisco.com

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

EPSS

0.004

Percentile

74.1%

JSON

Cisco ATA 187 Analog Telephone Adaptor firmware versions 9.2.1.0 and 9.2.3.1 contain a vulnerability that could allow an unauthenticated, remote attacker to access the operating system of the affected device.

Cisco has released software updates that address this vulnerability. Workarounds that mitigate this vulnerability are available.

This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130206-ata187[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130206-ata187”]

Affected configurations

Vulners

Node

ciscoata_187_analog_telephone_adaptorMatchany

ciscoataMatch187_analog_telephone_adaptor

VendorProductVersionCPE
ciscoata_187_analog_telephone_adaptoranycpe:2.3:h:cisco:ata_187_analog_telephone_adaptor:any:*:*:*:*:*:*:*
ciscoata187_analog_telephone_adaptorcpe:2.3:a:cisco:ata:187_analog_telephone_adaptor:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ata_187_analog_telephone_adaptor	any	cpe:2.3:h:cisco:ata_187_analog_telephone_adaptor:any:::::::*
cisco	ata	187_analog_telephone_adaptor	cpe:2.3:a:cisco:ata:187_analog_telephone_adaptor:::::::*