Cisco targets IP phone flaw

Cisco has released a patch to fix a software flaw that could open up its IP phones to DOS attacks.

Laura Rohde (IDG News Service)
26 May, 2005 08:52
Comments

Cisco Systems on Tuesday reacted to a warning from the U.K.'s National Infrastructure Security Co-ordination Centre (NISCC) that it had discovered a software flaw capable of causing the company's IP (Internet Protocol) telephones to crash.

The company issued a patch for the DNS (domain name system) protocol vulnerability, as well as free software, to fix the problem. The NISCC, also on Tuesday, categorized the flaw, which makes IP phones vulnerable to DOS (denial of service) attacks, as a moderate risk that also affects other software.

In its warning, the NISCC said that under certain circumstances, it is possible to cause both DNS servers and DNS clients to terminate abnormally by sending malformed messages.

Cisco said it knew of no products performing DNS server functions, or DNS packet inspection, which the vulnerability affects. The company also said that the problem only seemed to concern DNS clients running on its IP phones and content-networking products. Cisco's list of affected products included Cisco IP Phones 7902/7905/7912, Cisco ATA (Analog Telephone Adaptor) 186/188, as well as several Cisco Unity Express and Cisco ACNS (Application and Content Networking System) devices.

Come socialise with us! Facebook | LinkedIn

Bookmark this page
Share this article
- facebook
- slashdot
- digg
- Reddit
- stumbleupon
- linkedin
- twitter
Got more on this story? Email ARN
Follow ARN on twitter

More about: Cisco, Cisco Systems

Comments

Post new comment

Share
Share this article
- google+
- facebook facebook
- slashdot slashdot
- digg digg
- Reddit Reddit
- stumbleupon stumbleupon
- linkedin linkedin
- twitter twitter
print
email
Bookmark

Related Whitepapers

Wireless VC mobility

More details »

ARN Vendor Directory

Find vendors by name | category

iAsset is a channel management ecosystem that automates all major aspects of the entire sales,marketing and service process, including data tracking, integrated learning, knowledge management and product lifecycle management.

Featured Resources

Spectra Logic and Australian National University Success Story - March 2012

Australian National University (ANU) located in Canberra, and ranked as one of the top universities in Australia, recently deployed two Spectra Logic T950 enterprise tape libraries at the heart of its 9.5 petabyte tape-based active archive to support ANU’s high performance private data cloud storage solution. The cloud-based storage installation with Spectra’s tape-based active archive allows ANU to efficiently support its exponential data growth, accelerate access to its research data, and improve overall data reliability.

Most Popular Resource Papers

Market Potential-Strategy Guide to the Active Archive Market

The active archive market is a growing segment where tape is seen as part of a disk or network fileystem. This means that to an end user disk and tape are “blended” and whether file is held on disk or tape is “invisible” to the end user. The active archive market is the fastest growing space in the storage industry and allows direct end user access to tape through a file system front end.

Popular tags: Business Management, Security, Data Centre, Storage, Master Data Management