Cisco warns of flaws that could disrupt voice calls

Problems in its unified communications software could allow a denial of service attack.

Cisco has warned customers about faults in its unified communications software, which could allow for a denial of service (DoS) attack and the disruption of voice services.

A security alert said that there were faults in Cisco's unified communications manager, a call processing system that extends "enterprise telephony features" to network devices such as IP phones.

Advertisement - Article continues below

Two DoS vulnerabilities are around the processing of SIP packets. The vulnerabilities can be triggered by a malformed SIP message and cause a 'critical" process to fail, disrupting voice services.

Other DoS vulnerabilities include an issue with the tracking of network connections, and two others involving the processing of SIP and SCCP packets.

Cisco said it was not yet aware of any attacks trying to take advantage of flaws found in the advisory.

The alert was published a day after Cisco warned about problems with its Wireless LAN devices, which leave it open to a DoS attack.

Featured Resources

The case for a marketing content hub

Transform your digital marketing to deliver customer expectations

Download now

Fast, flexible and compliant e-signatures for global businesses

Be at the forefront of digital transformation with electronic signatures

Download now

Why CEOS should care about the move to SAP S/4HANA

And how they can accelerate business value

Download now

IT faces new security challenges in the wake of COVID-19

Beat the crisis by learning how to secure your network

Download now
Advertisement

Recommended

Visit/security/encryption/355820/k2view-innovates-in-data-management-with-new-encryption-patent
encryption

K2View innovates in data management with new encryption patent

28 May 2020
Visit/software/video-conferencing/355410/zoom-50-adds-256-bit-encryption-and-ui-refresh
video conferencing

Zoom 5.0 adds 256-bit encryption to address security concerns

23 Apr 2020
Visit/security/hacking/355382/whatsapps-flaw-shoulder-surfing
hacking

WhatsApp flaw leaves users open to 'shoulder surfing' attacks

21 Apr 2020
Visit/security/cyber-security/355368/microsoft-builds-ai-to-detect-security-flaws-with-99-accuracy
cyber security

Microsoft AI can detect security flaws with 99% accuracy

20 Apr 2020

Most Popular

Visit/server-storage/network-attached-storage-nas/355849/western-digital-sneaked-inferior-smr-tech-into
network attached storage (NAS)

Western Digital accused of sneaking inferior SMR tech into NAS drives

1 Jun 2020
Visit/security/data-breaches/355777/easyjet-faces-class-action-lawsuit-over-data-breach
data breaches

EasyJet faces class-action lawsuit over data breach

26 May 2020
Visit/operating-systems/microsoft-windows/355812/microsoft-warns-against-installing-windows-10-may-2020
Microsoft Windows

Microsoft warns users not to install Windows 10's May update

28 May 2020