← back
CVE-2008-1113

CVE-2008-1113

EPSS 0.9%
Cisco Unified Wireless IP Phone 7921, when using Protected Extensible Authentication Protocol (PEAP), does not validate server certificates, which allows remote wireless access points to steal hashed passwords and conduct man-in-the-middle (MITM) attacks.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://blogs.zdnet.com/security/?p=896http://blogs.zdnet.com/security/?p=901http://seclists.org/fulldisclosure/2008/Feb/0402.htmlhttp://seclists.org/fulldisclosure/2008/Feb/0449.htmlhttp://secunia.com/advisories/29082http://securitytracker.com/id?1019494http://www.securityfocus.com/bid/27935