[原文]Cisco IP Phone (VoIP) 7920 1.0(8) contains certain hard-coded ("fixed") public and private SNMP community strings that cannot be changed, which allows remote attackers to obtain sensitive information.
Cisco Unified IP Phone 7920 Hardcoded Default SNMP Strings
Remote / Network Access
Loss of Integrity
The Cisco 7920 Wireless IP Phone with default SNMP community strings "public" and "private". The strings are publicly known and documented, and cannot be changed. This allows attackers to trivially access the phone.
Upgrade to firmware version 1.0(9) or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.