Vulnerabilities > CVE-2006-0305 - Remote Administrative Access vulnerability in Clipcomm Cp-100E Voip Wifi Phone and Cpw-100E Voip Wifi Phone

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

clipcomm

NVD

Published: 2006-01-19

Updated: 2017-07-20

Summary

Clipcomm CPW-100E VoIP 802.11b Wireless Handset Phone running firmware 1.1.12 (051129) and CP-100E VoIP 802.11b Wireless Phone running firmware 1.1.60 allows remote attackers to gain unauthorized access via the debug service on TCP port 60023.

Vulnerable Configurations

Part	Description	Count
Hardware	Clipcomm Clipcomm CP 100E Voip Wifi Phone 1.1.60 Clipcomm CPW 100E Voip Wifi Phone 1.1.12	2

References

http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041436.html
http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041439.html
http://secunia.com/advisories/18505
http://www.securityfocus.com/bid/16289
https://exchange.xforce.ibmcloud.com/vulnerabilities/24144