The software flaw affects only Cisco routers running IOS Telephony Services, CallManager Express or Survivable Remote Site Telephony (SRST). These services use Cisco’s Skinny Call Control Protocol (SCCP, or Skinny), which controls signaling between Cisco IP telephones and CallManager call processors. The IOS bug could allow an attacker to send malformed packets to the Skinny port on a Cisco VoIP-enabled router, Cisco says.

The routers running any of the three affected VoIP services must also be running IOS software release trains 12.1YD, 12.2T, 12.3 and 12.3T in order to be considered vulnerable, Cisco says.

More information »

Recent Entries

• Scientists warn that Skype is an ideal vehicle for hackers
• Netgear WiFi phone - for Skype!
• Windows Live Messenger Phone
• Uniden and 8×8 Introduce New Generation of Co-Branded VoIP Products
• Jawbone information
• ZyXEL VoIP WiFi phone
• VoIP Security
• Sennheiser Introduces Two VoIP Headsets
• Verizon VoiceWing
• Skype headphones and microphones

This entry was posted on Wednesday, January 26th, 2005 at 7:40 am and is filed under Risks. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.