ID de Prueba:	1.3.6.1.4.1.25623.1.0.106217
Categoría:	CISCO
Título:	Cisco Small Business SPA3x/5x Series Denial of Service Vulnerability (cisco-sa-20160831-spa)
Resumen:	A vulnerability in the HTTP framework of Cisco Small Business; SPA300 Series IP Phones, Cisco Small Business SPA500 Series IP Phones, and Cisco SPA51x IP Phones; could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on; an affected device.
Descripción:	Summary: A vulnerability in the HTTP framework of Cisco Small Business SPA300 Series IP Phones, Cisco Small Business SPA500 Series IP Phones, and Cisco SPA51x IP Phones could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. Vulnerability Insight: The vulnerability is due to incorrect handling of malformed HTTP traffic. An attacker could exploit this vulnerability by sending crafted HTTP requests to an affected device. Vulnerability Impact: An exploit could allow the attacker to deny service continually by sending crafted HTTP requests to a phone, resulting in a DoS condition. Affected Software/OS: SPA300 Series IP Phones, SPA500 Series IP Phones and SPA51x IP Phones. Solution: See the referenced vendor advisory for a solution. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-1469 BugTraq ID: 92706 http://www.securityfocus.com/bid/92706 Cisco Security Advisory: 20160831 Cisco Small Business SPA3x/5x Series Denial of Service Vulnerability http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-spa http://www.securitytracker.com/id/1036717
Copyright	Copyright (C) 2016 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.