Title: Clipcomm CPW-100E and CP-100E VOIP Phones Remote Administrative Access Vulnerability
Severity: CRITICAL
Description:
Clipcomm CPW-100E VOIP phones provide Voice Over IP (VOIP) service through 802.11b wireless networks. Clipcomm CP-100E VOIP Phones provide VOIP service through Ethernet networks.
Clipcomm CPW-100E and CP-100E VOIP WIFI phones listen for connections on TCP port 60023. By connecting to this port, remote attackers gain unauthenticated access to both an administrative configuration interface, as well as a debugging interface.
This issue allows remote attackers to gain access to potentially sensitive information, trace calls, perform factory resets, and corrupt memory; other attacks are also possible. Attackers may also utilize a 'call' command in CPW-100E phones to make outgoing calls, turning the originating phone into a listening device.
Clipcomm CPW-100E phones running firmware version 1.1.12, and CP-100E phones running firmware version 1.1.60 are prone to this issue. Due to code reuse, other devices and versions may also be affected.
Affected Products:
- Clipcomm CP-100E VOIP WIFI Phone 1.1.60
- Clipcomm CPW-100E VOIP WIFI Phone 1.1.12
References:
- Clipcomm: Clipcomm VOIP Phone Product Page
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
