发布日期：2020-11-04
更新日期：2020-11-25

受影响系统：

Cisco IP DECT 6825 with Multiplatform Firmware
Cisco IP DECT 210 Multi-Cell Base Station
Cisco IP Phone 8811 Series with Multiplatform Firmware
Cisco IP Phone 8841 Series with Multiplatform Firmware
Cisco IP Phone 8851 Series with Multiplatform Firmware
Cisco IP Phone 8861 Series with Multiplatform Firmware
Cisco Unified IP Conference Phone 8831 for Third-Party C
Cisco Webex Room Phone

描述：

---

CVE(CAN) ID: CVE-2020-3574

Cisco IP Phone 8800 Series是一款8800系列的IP电话。Cisco IP Phone 7800 Series是一款7800系列IP电话。Cisco IP Phone存在拒绝服务漏洞。该漏洞源于程序未对TCP入口数据包的速率进行正确限制。未经身份认证的远程攻击者可利用该漏洞通过向受影响设备发送特制的TCP流量利用该漏洞导致电话停止响应传入呼叫，挂断呼叫或意外重新加载（拒绝服务）。

<*来源：Cisco
  
  链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-voip-phone-flood-dos-
*>

建议：

---

厂商补丁：

Cisco
-----
Cisco已经为此发布了一个安全公告（cisco-sa-voip-phone-flood-dos-YnU9EXOv）以及相应补丁:
cisco-sa-voip-phone-flood-dos-YnU9EXOv：Cisco IP Phone TCP Packet Flood Denial of Service Vulnerability
链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-voip-phone-flood-dos-

浏览次数：956
严重程度：0（网友投票）