{"id":1370,"date":"2019-03-21T15:54:29","date_gmt":"2019-03-21T20:54:29","guid":{"rendered":"https:\/\/cert.pa\/?p=1370"},"modified":"2019-03-21T15:54:29","modified_gmt":"2019-03-21T20:54:29","slug":"csirt-panama-aviso-2019-3-21-cisco-libera-multiples-actualizaciones-de-seguridad-a-sistemas-de-telefono-ip","status":"publish","type":"post","link":"https:\/\/cert.pa\/?p=1370","title":{"rendered":"CSIRT Panam\u00e1 Aviso 2019-3-21 Cisco libera m\u00faltiples actualizaciones de seguridad a sistemas de tel\u00e9fono IP."},"content":{"rendered":"\n<p>CSIRT Panam\u00e1 Aviso 2019-3-21 Cisco libera m\u00faltiples actualizaciones de seguridad a sistemas de tel\u00e9fono IP.<\/p>\n\n\n\n<p>Gravedad: Cr\u00edtica<br>\nFecha de publicaci\u00f3n: marzo 21, 2019<br>\nFecha de modificaci\u00f3n: marzo 21, 2019<br>\n\u00daltima revisi\u00f3n: Revisi\u00f3n A.<br>\nFuente: Cisco Security Advisories and Alerts<\/p>\n\n\n\n<p>Sistemas Afectados <br>\n\u2022    Cisco IP Phone 8800 Series<br>\n\u2022    Cisco IP Phone 7800 Series<\/p>\n\n\n\n<p>I. Descripci\u00f3n<br>\nLa empresa Cisco ha publicado vulnerabilidad critica que podr\u00eda afectar a los sistemas de tel\u00e9fonos por IP para las series 8800 y 7800. En las series 8800 presenta vulnerabilidades como la ruta de recorrido CVE-2019-1765, denegaci\u00f3n de servicio de carga de archivos CVE-2019-1766 y falsificaci\u00f3n de solicitudes entre sitios CVE-2019-1764. Y vulnerabilidad para las series 7800 y 8800 de ejecuci\u00f3n de c\u00f3digo remoto CVE-2019-1716. <br>\nCisco ha lanzado actualizaciones de software que abordan la vulnerabilidad descrita en este aviso. Se les exhorta a revisar los enlaces en la secci\u00f3n III de referencias, para aplicar las acciones necesarias.<\/p>\n\n\n\n<p>II. Impacto<br>\nComplejidad de Acceso: Critica.<br>\nAutenticaci\u00f3n: No requerida para explotarla.<br>\nTipo de impacto: Compromiso parcial o total del sistema.<\/p>\n\n\n\n<p>III. Referencia a soluciones, herramientas e informaci\u00f3n<br>\na.    https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190320-ipptv<br>\nb.    https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190320-ipfudos<br>\nc.    https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190320-ip-phone-csrf<br>\nd.    https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190320-ip-phone-rce<br>\ne.    https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190320-ip-phone-rce<\/p>\n\n\n\n<p>IV. Informaci\u00f3n de contacto<br>\nCSIRT PANAMA<br>\nAutoridad Nacional para la Innovaci\u00f3n Gubernamental<br>\nE-Mail: info@cert.pa<br>\nWeb:   http:\/\/www.cert.pa<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CSIRT Panam\u00e1 Aviso 2019-3-21 Cisco libera m\u00faltiples actualizaciones de seguridad a sistemas de tel\u00e9fono IP. Gravedad: Cr\u00edtica Fecha de publicaci\u00f3n: marzo 21, 2019 Fecha de modificaci\u00f3n: marzo 21, 2019 \u00daltima revisi\u00f3n: Revisi\u00f3n A. Fuente: Cisco&#8230;<\/p>\n","protected":false},"author":4,"featured_media":448,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"categories":[4],"tags":[],"class_list":["post-1370","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-avisos-de-seguridad"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/1370","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1370"}],"version-history":[{"count":1,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/1370\/revisions"}],"predecessor-version":[{"id":1371,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/1370\/revisions\/1371"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/media\/448"}],"wp:attachment":[{"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1370"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1370"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1370"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}