#VU51233 Buffer overflow in Cisco Systems, Inc products - CVE-2021-1379

Cybersecurity Help s.r.o.

Published: 2021-03-04

Vulnerability identifier: #VU51233

Vulnerability risk: Medium

CVSSv4.0: 6.3 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2021-1379

CWE-ID: CWE-119

Exploitation vector: Local network

Exploit availability: No

Vendor: Cisco Systems, Inc

Description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to a boundary error in the Cisco Discovery Protocol and Link Layer Discovery Protocol (LLDP) implementations. A remote attacker on the local network can trigger memory corruption and execute arbitrary code on the target IP phone or cause a denial of service (DoS) condition.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Cisco Unified IP Conference Phone 8831 for Third-Party Call Control: All versions

Cisco SPA525G 5-Line IP Phone: All versions

Cisco IP Conference Phone 7832: before 12.8.1 SR1

Cisco IP Conference Phone 7832 with Multiplatform Firmware: before 11.3.2

Cisco IP Conference Phone 8832: before 12.8.1 SR1

Cisco IP Conference Phone 8832 with Multiplatform Firmware: before 11.3.2

Cisco IP Phone 6821 with Multiplatform Firmware: before 11.3.2

Cisco IP Phone 6841 with Multiplatform Firmware: before 11.3.2

Cisco IP Phone 6851 with Multiplatform Firmware: before 11.3.2

Cisco IP Phone 6861 with Multiplatform Firmware: before 11.3.2

Cisco IP Phone 6871 with Multiplatform Firmware: before 11.3.2

Cisco IP Phone 7811: before 12.8.1 SR1

Cisco IP Phone 7811 with Multiplatform Firmware: before 11.3.2

Cisco IP Phone 7821: before 12.8.1 SR1

Cisco IP Phone 7821 with Multiplatform Firmware: before 11.3.2

Cisco IP Phone 7841: before 12.8.1 SR1

Cisco IP Phone 7841 with Multiplatform Firmware: before 11.3.2

Cisco IP Phone 7861: before 12.8.1 SR1

Cisco IP Phone 7861 with Multiplatform Firmware: before 11.3.2

Cisco IP Phone 8811: before 12.8.1 SR1

Cisco IP Phone 8811 with Multiplatform Firmware: before 11.3.2

Cisco IP Phone 8841: before 12.8.1 SR1

Cisco IP Phone 8841 with Multiplatform Firmware: before 11.3.2

Cisco Wireless IP Phone 8851: before 12.8.1 SR1

Cisco IP Phone 8851 with Multiplatform Firmware: before 11.3.2

Cisco IP Phone 8861: before 12.8.1 SR1

Cisco IP Phone 8861 with Multiplatform Firmware: before 11.3.2

Cisco Wireless IP Phone 8845: before 12.8.1 SR1

Cisco IP Phone 8845 with Multiplatform Firmware: before 11.3.2

Cisco Unified IP Conference Phone 8831: before 10.3.1 SR7

Cisco Wireless IP Phone 8821: before 11.0.6.6

Cisco Wireless IP Phone 8821-EX: before 11.0.6.6

Cisco IP Phone 8865: before 12.8.1 SR1

Cisco IP Phone 8865 with Multiplatform Firmware: before 11.3.2

External links
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipphone-rce-dos-U2PsSkz3

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Remote code execution in Cisco IP Phones