In association with heise online

« previous | next »
5 March 2010, 16:12

Cisco patches vulnerabilities in voice solutions

Cisco has released a number of reports on vulnerabilities in its products. It is possible to disrupt the transfer of voice data in the Unified Communications Manager using crafted SIP, SCCP and CTI packets. Versions 4, 5, 6 and 7 are all affected. Updates are available to fix the problem. Unified Communications Manager 8.0(1) and Cisco Unified Communications Manager Express are not vulnerable.

The Cisco Digital Media Manager also contains multiple vulnerabilities which can be exploited by unauthorised users to access data and change the configuration. Versions prior to 5.2 contain default credentials which can be used by attackers to access web application configurations. It is also possible to inject voice and video data into a connection and output it at a remote end point. The vulnerabilities are fixed in version 5.2.

See also:

(djwm)

Read comments (1 comment)
Cisco 'vulnerablilities'

« previous | next »
Print Version | Send by email | Permalink: http://h-online.com/-947480

Also on The H:

  • Share this article
  • Twitter
  • Facebook
  • digg this
  • submit to slashdot
  • post to delicious
  • StumbleUpon
  • submit to reddit
The H Open Headlines

Price Insight Top 10 powered by Skinflint

  1. Samsung Galaxy S2 i9100 16GB schwarz
  2. Crucial m4 SSD 128GB
  3. Intel Core i5-2500K
  4. TeamGroup Elite DIMM Kit 8GB PC3-10667U CL9-9-9-24 (DDR3-1333)
  5. Intel Core i7-2600K
  6. ASUS EAH6870 DC/2DI2S/1GD5
  7. ASRock Z68 Pro3
  8. Samsung Galaxy S Plus i9001 schwarz 8GB
  9. Samsung EcoGreen F4 2000GB
  10. Samsung Galaxy S i9000 schwarz 8GB

The H

The H open source

The H Security

The H Internet Toolkit