CVE-2008-1113

Cisco Unified Wireless IP Phone 7921, when using Protected Extensible Authentication Protocol (PEAP), does not validate server certificates, which allows remote wireless access points to steal hashed passwords and conduct man-in-the-middle (MITM) attacks.

CVSS v2.0 7.8 HIGH

7.8^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:N/A:N

Exploitability : 10.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://seclists.org/fulldisclosure/2008/Feb/0402.html
http://seclists.org/fulldisclosure/2008/Feb/0449.html
http://blogs.zdnet.com/security/?p=896
http://blogs.zdnet.com/security/?p=901
http://www.securityfocus.com/bid/27935
http://securitytracker.com/id?1019494
http://secunia.com/advisories/29082	Vendor Advisory

Advertisement

Configurations

Configuration 1 (hide)

AND

cpe:2.3:h:cisco:7921_wireless_ip_phone:*:*:*:*:*:*:*:*

cpe:2.3:a:vocera_communications:vocera_communications_badge:*:*:*:*:*:*:*:*

Information

Published : 2008-03-03 10:44

Updated : 2008-09-05 14:36

NVD link : CVE-2008-1113

Mitre link : CVE-2008-1113

JSON object : View

CWE

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

Advertisement

Products Affected

vocera_communications

vocera_communications_badge

cisco

7921_wireless_ip_phone

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://seclists.org/fulldisclosure/2008/Feb/0402.html", "name": "20080221 Cisco and Vocera wireless LAN VoIP devices don't check certificates", "tags": [], "refsource": "FULLDISC"}, {"url": "http://seclists.org/fulldisclosure/2008/Feb/0449.html", "name": "20080223 Cisco confirms vulnerability in 7921 Wi-Fi IP phone", "tags": [], "refsource": "FULLDISC"}, {"url": "http://blogs.zdnet.com/security/?p=896", "name": "http://blogs.zdnet.com/security/?p=896", "tags": [], "refsource": "MISC"}, {"url": "http://blogs.zdnet.com/security/?p=901", "name": "http://blogs.zdnet.com/security/?p=901", "tags": [], "refsource": "MISC"}, {"url": "http://www.securityfocus.com/bid/27935", "name": "27935", "tags": [], "refsource": "BID"}, {"url": "http://securitytracker.com/id?1019494", "name": "1019494", "tags": [], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/29082", "name": "29082", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Cisco Unified Wireless IP Phone 7921, when using Protected Extensible Authentication Protocol (PEAP), does not validate server certificates, which allows remote wireless access points to steal hashed passwords and conduct man-in-the-middle (MITM) attacks."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-200"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2008-1113", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 6.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2008-03-03T18:44Z", "configurations": {"nodes": [{"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:cisco:7921_wireless_ip_phone:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:vocera_communications:vocera_communications_badge:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "operator": "AND", "cpe_match": []}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2008-09-05T21:36Z"}