Cisco IP Phone 8800 Series Denial of Service Vulnerability

A vulnerability in the web server of the Cisco IP Phone 8800 Series could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.

The vulnerability is due to improper validation of user-supplied input by the affected software. An attacker could exploit this vulnerability by sending a malicious HTTP request to the affected device. A successful exploit could cause memory corruption that results in a DoS condition.

Cisco has released software updates that address this vulnerability. Workarounds that address this vulnerability are not available.

This advisory is available at the following link: http://ift.tt/2b1lUjc A vulnerability in the web server of the Cisco IP Phone 8800 Series could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.

The vulnerability is due to improper validation of user-supplied input by the affected software. An attacker could exploit this vulnerability by sending a malicious HTTP request to the affected device. A successful exploit could cause memory corruption that results in a DoS condition.

Cisco has released software updates that address this vulnerability. Workarounds that address this vulnerability are not available.

This advisory is available at the following link: http://ift.tt/2b1lUjc
Security Impact Rating: Medium
CVE: CVE-2016-1479

from Cisco Security Advisory http://ift.tt/2b1lUjc