VoIP security solutions from Cisco

by Lin Freestone
February 16, 2008 VoIP 2

Cisco has brought out two security solutions to defend against potentially dangerous exploits via its VoIP kit, including the possibility of malicious code being injected into vulnerable networks.


Vulnerabilities in Cisco IP Phones and its Unified Communications Manager call management software are covered.
A range of Cisco 7900 Series IP Phones are subject to multiple flaws. Some of these may be vulnerable to attacks involving the execution of arbitrary code. Malicious DNS responses, a bug on the phone's SSH server and flaws in the handling of MIME on SIP messages all create buffer overflow risks. 
Other bugs can cause vulnerable phones to crash. The bugs affect ranges of Cisco Unified IP Phone devices running both SIP firmware and SCCP firmware.













 Email This Post
 
 Print This Post




Add to Bookmarks:



  
   
  
   
 



 
   
 
   
 
   
 



Related posts to "VoIP security solutions from Cisco":

Cisco tackles security threat
Cisco is trying to tackle a security threat in its VoIP phones that allow hackers to eavesdrop on conversations. The threat was discovered by a resear...

New recording solution from ASC
A new version of ASC’s VoIP recording solution, EVOip for Cisco, will be exhibited at the Cisco Networkers' Conference in Barcelona from 22-24 Janua...

Cisco releases patches for VoIP products
Cisco Security has released patches for vulnerabilities in its VoIP products. 

VoIPshield Laboratories identified the vulnerabilities in Cisco's Un...

Continuing consolidation of Cisco VoIP channel partners
INX Inc, a Cisco unified communications partner, has acquired Select, a fellow Cisco Gold Partner, for $8.5m. The acquisition is a continuation of the...

VoIP top security risk online
The new VOIP technology ranks as one of the top internet security risks.
 
According to the SANS Institute’s 2006 list of “Top 20 Internet Secur...






No Comments 
	»


	No comments yet.



Leave a comment






Name (required)


Mail (will not be published) (required)


Website









        
       
       
    	     
             Please add 10 and 10     


            
        
        
         
        
        




		

Previous: « Gieves and Hawkes adopts VoIP system

Next: Two more Wi-Fi roaming partners for Boingo »
		



Visited 522 times, 1 so far today


Daily VoIP News Digest		Friday 25th of July 2008
Main: Home News Blog VoIP Categories: General VoIP VoIP Networks VoIP Phones VoIP Resources VoIP Technology VoIP Info VoIP Security News archives: July 2008 June 2008 May 2008 April 2008 March 2008 February 2008 January 2008 December 2007 November 2007 October 2007 September 2007 August 2007 July 2007 June 2007 May 2007 April 2007 March 2007 February 2007 January 2007 December 2006 November 2006 December 2005 November 2005 October 2005 July 2005 June 2005 May 2005 April 2005 March 2005 January 2005 More: Business Phones Cameras	VoIP security solutions from Cisco by Lin Freestone February 16, 2008 `Cisco has brought out two security solutions to defend against potentially dangerous exploits via its VoIP kit, including the possibility of malicious code being injected into vulnerable networks.` Vulnerabilities in Cisco IP Phones and its Unified Communications Manager call management software are covered. A range of Cisco 7900 Series IP Phones are subject to multiple flaws. Some of these may be vulnerable to attacks involving the execution of arbitrary code. Malicious DNS responses, a bug on the phone's SSH server and flaws in the handling of MIME on SIP messages all create buffer overflow risks. Other bugs can cause vulnerable phones to crash. The bugs affect ranges of Cisco Unified IP Phone devices running both SIP firmware and SCCP firmware. Email This Post Print This Post Add to Bookmarks: Related posts to "VoIP security solutions from Cisco": Cisco tackles security threat Cisco is trying to tackle a security threat in its VoIP phones that allow hackers to eavesdrop on conversations. The threat was discovered by a resear... New recording solution from ASC A new version of ASC’s VoIP recording solution, EVOip for Cisco, will be exhibited at the Cisco Networkers' Conference in Barcelona from 22-24 Janua... Cisco releases patches for VoIP products Cisco Security has released patches for vulnerabilities in its VoIP products. VoIPshield Laboratories identified the vulnerabilities in Cisco's Un... Continuing consolidation of Cisco VoIP channel partners INX Inc, a Cisco unified communications partner, has acquired Select, a fellow Cisco Gold Partner, for $8.5m. The acquisition is a continuation of the... VoIP top security risk online The new VOIP technology ranks as one of the top internet security risks. According to the SANS Institute’s 2006 list of “Top 20 Internet Secur... No Comments » No comments yet. Leave a comment Name (required) Mail (will not be published) (required) Website Please add 10 and 10 Previous: « Gieves and Hawkes adopts VoIP system Next: Two more Wi-Fi roaming partners for Boingo » Visited 522 times, 1 so far today	General VoIP Reigate and Banstead Borough Council to use speech self service payments VoIP Phones Snom and Konftel Get Together For Mutual Benefit VoIP Technology Indafon integrates Jabber, phone and more VoIP Networks Snom and Konftel Get Together For Mutual Benefit 3 Skypephone upgrade rumoured VoIP Security Cisco releases patches for VoIP products Latest News: Reigate and Banstead Borough Council to use speech self service payments According to Nemertes, Shoretel is best VoIP provider Fring available on Java ME & Linux phones Indafon integrates Jabber, phone and more Snom launches VoIP installation training Truphone comes to iPhone Snom and Konftel Get Together For Mutual Benefit 3 Skypephone upgrade rumoured SPIRIT DSP & Tensilica Team Up Vopium expanding in Europe Most Read News Today: Reigate and Banstead Borough Council to use speech self service payments NexTone and Springboard collaborate on VoIP Billing Nimbuzz gets $15 million shot in the arm 3 Skypephone upgrade rumoured According to Nemertes, Shoretel is best VoIP provider Vyke launches free mobile text messages VoIP Call Generator Indafon integrates Jabber, phone and more Raketu launches VoIP for BlackBerry devices Fring available on Java ME & Linux phones Most Read News To Date: Vyke launches free mobile text messages VoIP forum SIPtap software can eavesdrop on VoIP calls Imminent release of 3 Mobile's Skype phone NexTone and Springboard collaborate on VoIP Billing Trial download of NoiseFree VoIP Touchmods hack brings VoIP to iPod Touch World Phone unveils VoIP plans in India Ooma provides free phone calls over broadband FreshTel provides VoIP products in ASDA UK Will bonded ADSL see bigger take-up?
VoIP News © 2005-2008. All rights reserved \| About \| Disclaimer \| Privacy \| XML Feed \| Contact

Main:

VoIP Categories:

News archives:

More:

VoIP security solutions from Cisco

Related posts to "VoIP security solutions from Cisco":

Leave a comment

General VoIP

VoIP Phones

VoIP Technology

VoIP Networks

VoIP Security

Latest News:

Most Read News Today:

Most Read News To Date: