Cisco discloses high-severity IP phone bug with exploit code


Cisco has disclosed today a high-severity vulnerability affecting the latest generation of its IP phones and exposing them to remote code execution and denial of service (DoS) attacks.

The company warned on Thursday that its Product Security Incident Response Team (PSIRT) is “aware that proof-of-concept exploit code is available” and that the “vulnerability has been publicly discussed.”

However, Cisco’s PSIRT added that it is not yet aware of any attempts to exploit this flaw in attacks.

Read more…
Source: Bleeping Computer