Thursday July 24, 2008 3:54 AM AEST

SC Magazine Australia/NZ > News > Messaging > VoIP Security > Cisco warns on IP telephony flaws

Vulnerability Alerts

SANS

Microsoft

MS08-040 – Important: Vulnerabilities in Microsoft SQL Server Could Allow Elevation of Privilege (941203) - Version:1.4
Microsoft Security Bulletin Summary for June 2008

CERT/CC

Latest Comments

"websense"

on Websense Express 1.0

by Ruben | Jul 23, 2008 8:01 PM

"The hot fix in particular is KB951748 This is for xp users only Hope this helps"

on ZoneLabs details Microsoft patch workarounds

by Steve | Jul 22, 2008 5:35 PM

"kdjfkjasd"

on HP WebInspect 7.7

by fdsf | Jul 19, 2008 10:19 PM

"Hacked? No, it was not hacked. Lots of people were told to search for it. That's all."

on Google Trends hacked again

by kgh0st | Jul 19, 2008 3:33 PM

""but experts are poring over the site's logs to find the vulnerability that allowed the security ..."

on Popular porn site hacked by prudes

by J | Jul 18, 2008 9:53 PM

VoIP Security

Cisco warns on IP telephony flaws

By Richard Thurston
May 16, 2008 10:21 AM
Tags: "cisco" | "IP | flaws" | "viop | security"

Cisco Unified Communications Manager, one of the most popular IP telephony products in the market, contains multiple denial of service vulnerabilities, the company admitted in a security advisory on Wednesday.

The vulnerabilities could be exploited to interrupt voice services, Cisco said. This can be carried out remotely and without user interaction.

The company has released patches and urged businesses to apply them. Four services are affected: Certificate Trust List Provider, Certificate Authority Proxy Function, SIP and SNMP Trap.

The vulnerabilities affect a wide range of models across versions 4,5 and 6. Unified Communications Manager Express - the call handling software embedded in Cisco's Integrated Services Routers (ISRs) which is often used in branch office locations - is not affected.

Separately, Cisco has revealed three denial of service vulnerabilities which could take down its presence software. The company has made patches available.

Secure Computing Magazine

Ads by Google

Thoughts on this article? Add a comment below.

Be the first to comment on this article.

Name:

Email:

(will not be displayed)

Comment:

(HTML not permitted)

Validation

Enter the code you see below:

Most Read
Most Discussed
Latest News

Messaging Whitepapers

Cisco warns on IP telephony flaws

Sponsored Links

SC MAGAZINE SITEMAP

CATEGORIES

News

Alerts

Products

Stats

Blogs

Photo Galleries

Whitepapers

Events

Jobs

Downloads

Vulnerabilities & Exploits

Breaches & Exposures

Messaging

Mobile

Access Control

Biometrics & Forensics

Legal

Risk Management

Job Centre

Patch Management