Vulnerabilities > Cisco > Skinny Client Control Protocol Software > 8.5.2

DATE	CVE	VULNERABILITY TITLE	RISK
2012-12-28	CVE-2012-5445	Improper Input Validation vulnerability in Cisco products The kernel in Cisco Native Unix (CNU) on Cisco Unified IP Phone 7900 series devices (aka TNP phones) with software before 9.3.1-ES10 does not properly validate unspecified system calls, which allows attackers to execute arbitrary code or cause a denial of service (memory overwrite) via a crafted binary. local low complexity cisco CWE-20	6.8
2011-06-02	CVE-2011-1637	Permissions, Privileges, and Access Controls vulnerability in Cisco products Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.2.1 do not properly verify signatures for software images, which allows local users to gain privileges via a crafted image, aka Bug ID CSCtn65962. local cisco CWE-264	1.5
2011-06-02	CVE-2011-1603	Permissions, Privileges, and Access Controls vulnerability in Cisco products Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.2.1 allow local users to gain privileges via unspecified vectors, aka Bug ID CSCtn65815. local cisco CWE-264	6.6
2011-06-02	CVE-2011-1602	Permissions, Privileges, and Access Controls vulnerability in Cisco products The su utility on Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.0.3 allows local users to gain privileges via unspecified vectors, aka Bug ID CSCtf07426. local cisco CWE-264	6.6

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.