VoIP & Gadgets Blog

VoIP & Gadget blog with the latest news in the VoIP and gadget space, wireless, mobile phones, product reviews, opinion & analysis.

About Me (Full Bio)

VoIP & Gadgets Blog:

Tom Keating: CTO, VP, Founder TMC Labs; B.S. Computer Engineering, 14 yrs telecom experience, 28 yrs programming, tinkering with & breaking computers. Gadgets & VoIP are favorite topics on this blog

The Five Keys to Organic Growth: How to Drive Profitable...

SPSS Survey Tips

SSR Application Handbook

Cisco Denial of Service VoIP Attack

CNET is reporting that routers running the IOS Telephony Service, Cisco CallManager Express and Survivable Remote Site Telephony features could be vulnerable.

The CallManager Express feature enables Cisco IP routers to handle call processing for Cisco IP phones. Cisco said in its warning that certain "malformed packets" sent to the port handling the Skinny Call Control Protocol may cause the device to reload. An attacker exploiting this bug could flood the device with malformed packets that would cause the device to reload over and over again, causing a denial-of-service attack.

Although there are no reports of this attack causing VoIP phones to crash or reboot, the possibility of hackers causing a major corporation with hundreds of Cisco IP phones deployed could cost the company millions - not to mention a very bad black eye for the VoIP industry.

Let's hope Cisco fixed the bug quickly and that this is the last we hear of a vulnerability in their IOS operating system or at least none that affects their VoIP offerings. Wishful thinking I am sure...

January 21, 2005 4:41 PM |

0 Comments | 0 TrackBacks

Categories:

Tags:

cisco

callmanager express

malformed packets

VoIP » Cisco Denial of Service VoIP Attack

View Cisco Denial of Service VoIP Attack news in Technorati

Technorati bookmark Cisco Denial of Service VoIP Attack in del.icio.us

bookmark Cisco Denial of Service VoIP Attack in del.icio.us

Del.icio.us Slashdot.com

Slashdot.com

Submit Cisco Denial of Service VoIP Attack to Digg.com

Twitter Cisco Denial of Service VoIP Attack

Related Entries to Cisco Denial of Service VoIP Attack

SmartSIP Launches for OCS 2007 R2 Enabling Any SIP Phone & Any SIP Trunking Service Provider - Mar 04, 2009
John Chambers Blogs about Broadband Stimulus on GigaOM - Mar 04, 2009
SHSU Switches Back to Cisco CallManager from Asterisk - Feb 27, 2009
Cisco TelePresence Video Conferencing Enables Fans to Interact with NBA Players - Feb 13, 2009
Cisco Unified MeetingPlace 7.0 with WebEx integration Review - Feb 05, 2009
Cisco ASR 9000 High-end Router Launches - Nov 11, 2008
Cisco AutoQoS Enables Easy VoIP QoS - Sep 11, 2008
Digium AsteriskNOW News and more... - Aug 25, 2008
The IP-PBX Energy Wars... - Aug 04, 2008
Cisco Manager Meets Jurassic Park - Jul 10, 2008

Listed below are links to sites that reference Cisco Denial of Service VoIP Attack:

Cisco Denial of Service VoIP Attack TrackBack URL : http://blog.tmcnet.com/mt/mt-tb.cgi/1149

Leave a comment

Name

Email Address

URL

Remember personal info?

Comments (You may use HTML tags for style)

Notify me of new comments?

Friday

Tom Keating queued Star Trek Tom Keating queued Star Trek Tom Keating queued Star Trek 2009-07-03T20:57:21Z 2009-07-03T20:57:21Z
Tom Keating queued Stardust Tom Keating queued Stardust Tom Keating queued Stardust 2009-07-03T20:57:21Z 2009-07-03T20:57:21Z
Tom Keating queued The Fountain Tom Keating queued The Fountain Tom Keating queued The Fountain 2009-07-03T20:57:21Z 2009-07-03T20:57:21Z

Thursday

Tom Keating queued The Legend of Johnny Lingo 2009-07-02T16:12:19Z 2009-07-02T16:12:19Z
Tom Keating queued Dreamer: Inspired by a True Story 2009-07-02T16:12:19Z 2009-07-02T16:12:19Z
Tom Keating queued Open Season 2 Tom Keating queued Open Season 2 Tom Keating queued Open Season 2 2009-07-02T16:12:16Z 2009-07-02T16:12:16Z
Tom Keating queued Arthur and the Invisibles 2009-07-02T16:12:16Z 2009-07-02T16:12:16Z

Wednesday

Tom Keating tweeted, "Worst Google News Headline Ever! - No public viewing at Neverland, but Michael Jackson may get laid: I was happi.. http://tinyurl.com/nrlsjo" 2009-07-02T03:53:20Z 2009-07-02T03:53:20Z

http://openid.aol.com/drdaraban: Yes, I confirm antonioj's comment, both skype and the app read more
cmytroops: I was browsing the net and cam across a great read more
mike: Sorry if this is off topic but I’m thinking of read more
@NumberGarage: Our military service men and women should be driving new read more
https://www.google.com/accounts/o8/id?id=AItOawlacBYIyCFI8mz5HS_pdsnSDV1wLz6Vgc8: We have implemented over 50 VoIP systems in the last read more
Theo Barton: Its a good phone. I have had a lot of read more
https://me.yahoo.com/a/ea7WMvNu2Mlud7dBwQPAAus9JCfo9qE-#27391: I don't want to go through all the problems, I read more
Claudio G.: I contacted these folks via e-mail recently (June 2009)and they read more
Kinjudah De- Morgan: I am using a strong satelite receiver and a Gateway read more
dell gx620: I have just had my second Dell. Thinking by spending read more

2009
Jan Feb Mar Apr May Jun
2008
Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec
2007
Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec
2006
Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec
2005
Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec
2004
Mar Apr May Jun Jul Aug Sep Oct Nov Dec