This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote IP telephony device is missing a vendor-supplied patch.
According to its self-reported version, the version of the Cisco
Unified IP Phone software running on the remote device has an
undocumented test interface TCP service that could be accessed on port
7870. This service could allow unauthorized users to obtain remote root
access on the device.
See also :
Apply the relevant update referenced in Cisco Security Advisory.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.7
Public Exploit Available : true
Nessus Plugin ID: 72724 ()
Bugtraq ID: 65663
CVE ID: CVE-2014-0721
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.