Cisco has announced that certain versions of Cisco Unified Communications Manager (Cisco Unified CM) are vulnerable to remote hacker attacks such as
Cisco explains how they found out about the problem through independent researchers:
On June 6, 2013, a French security firm, Lexfo, delivered a public presentation on VoIP security that included a demonstration of multiple vulnerabilities used to compromise Cisco Unified CM. During the presentation, the researchers demonstrated a multistaged attack that chained a number of vulnerabilities, which resulted in a complete compromise of the Cisco Unified CM server.
A Cisco Options Package (COP) file has been released as a temporary fix to shore up the weaknesses and can be found on the Cisco download page. Look for the file named:
These versions of Cisco Unified CM are known to be vulnerable:
These additional Cisco products might be vulnerable to the same products but, they haven’t been confirmed yet:
Lucian Constantin at PCWorld is also reporting that Cisco has warned users of denial-of-service (DoS) attacks could affect these products:
https://www.youtube.com/watch?v=akxEeUSD3P8 Get your dose of VoIP News for April with our VoIP News Update! This…
How many different acronyms do we have to remember nowadays? And we also have to…
One of the biggest challenges among organizations today is security and creating seamless integration between…
The Snom D785 is now available in White! The D785 Corded IP Phone in White…
https://www.youtube.com/watch?v=76hl-W6Pu_E If you're looking for a feature-rich, entry-level IP phone for your office or business,…
https://www.youtube.com/watch?v=M-qXSBMYFcg&t=333s Grandstream has yet again expanded its portfolio; this time, it's with the GHP Series…