Snom VoIP vulnerability resolved

Snom 320After my Snom VoIP phone hacked article, I received a response from snom indicating that the vulnerability had more to do with a user not setting a password on the IP phone than any sort of bug or vulnerability in the snom firmware itself. Well that's certainly good news. I guess users or IT administrators that don't set passwords on the IP phones have only themselves to blame if their phones are hacked.

This direct from Snom...

CVE-2008-1248:
Yes, you can send an HTTP-POST to the phone and let it dial a number. But you can protect your phone by setting a password. If you set a password then nobody can post an HTTP request to dial a number. The statement in the referred web site that Snom phone don't support passwords is wrong. You can set a password to protect your phone. And you should do it if your phone is connected to the Internet directly.

Our next firmware release will warn the user that no password is set and that his phone is vulnerable.

This is not a real vulnerability, so we can't say a particular firmware is affected, since you can avoid it by setting a password

CVE-2008-1249:
Yes, this is possible right now when the flash plugin is enabled. But the flash plugin is not enabled by default in current firmwares. So a phone is not vulnerable unless you enable the flash plugin. But you can protect your phone by setting a password like for CVE-2008-1248.

Our next firmware release will warn the user that no password is set and that his phone is vulnerable.

Our release after the next will change the flash plugin so that this isn't possible any more.

This is not a real vulnerability, so we can't say a particular firmware is affected, since you can avoid it by setting a password

CVS-2008-1250:
Yes, Snom phone are vulnerable to cross-site request forgery (CSRF). All firmware up to V7.1.30 are affected.

We have changed our web frontend. It uses tokens and html-encoding for values entered in input fields now. Our next firmware release will not be vulnerable to CSRF any more.

CVS-2008-1251:
Yes, Snom phone are vulnerable to Cross-site scripting (XSS). All firmware up to V7.1.30 are affected.

We have changed our web frontend. It uses tokens and html-encoding for values entered in input fields now. Our next firmware release will not be vulnerable to XSS any more.

We also created a website:
http://www.snom.com/javascriptsecurity.html
March 31, 2008 11:13 AM | 2 Comments | 0 TrackBacks

Categories:

Tags:

Post a comment
View Snom VoIP vulnerability resolved news in TechnoratiTechnorati bookmark Snom VoIP vulnerability resolved in del.icio.usDel.icio.us Slashdot.comSlashdot Submit Snom VoIP vulnerability resolved to Digg.comDigg

Listed below are links to sites that reference Snom VoIP vulnerability resolved:

0 TrackBacks

Snom VoIP vulnerability resolved TrackBack URL : http://blog.tmcnet.com/mt/mt-tb.cgi/35648

2 Comments

Yes, of course setting the password protects the phones from getting hacked. Its good to have passwords especially for the phones having snom VoIP. This should be done carefully.

Mike | March 31, 2008 12:41 PM | Reply

It is a necessary to set passwords to your IP because if not they can be hacked and we face lots of problems.

Mike | April 1, 2008 11:24 AM | Reply

Leave comment to Snom VoIP vulnerability resolved article

Search


Recent Entries

Recent Comments

Subscribe to Blog

Categories

Tag Cloud

    View my Microsoft MVP Profile:

Blogroll

Recent Assets

  • motorola-femtocell-voip-prototype.jpg
  • nutsieblackberry.jpg
  • asus eee news_0924a.jpg
  • dell1_72_270x337.jpg
  • skype-for-asterisk.jpg
  • aex410.png
  • foggy-telephone-pole.preview.jpg
  • Sony Bluetooth Watch MBW_TN_70x70.jpg
  • Google G1 HTC 627f69ee-0ea6-46fa-b750-8c995cdad79f.jpg
  • jaginga-logo.gif

Yearly Archives

'04 '05 '06 '07 '08
  Jan Jan Jan Jan
  Feb Feb Feb Feb
Mar Mar Mar Mar Mar
Apr Apr Apr Apr Apr
May May May May May
Jun Jun Jun Jun Jun
Jul Jul Jul Jul Jul
Aug Aug Aug Aug Aug
Sep Sep Sep Sep Sep
Oct Oct Oct Oct  
Nov Nov Nov Nov  
Dec Dec Dec Dec  

Around TMCnet Blogs

  • Communications and Technology Blog - Tehrani.com:
    Avatars: The Cursor in Communications 2.0
  • First Coffee:
    CRM for IDOX, Neolane's Marketing Automation, SugarCRM Webcast, Agresso and Sabre, Webalo
  • Greg Galitzine's VoIP Authority Blog:
    TelcoBridges at WiMAX World
  • VoIP & Gadgets Blog:
    Ultimate Ears -- Very Sweet ...
  • Communications and Technology Blog - Tehrani.com:
    HTC WiMAX-Based T8290 Comes to Russia
  • First Coffee:
    CRM Training for Infusionsoft, OneSource in Europe, StrongMail and Marketo, Griffin and ReachForce, Kintera Support, NetSuite
  • Greg Galitzine's VoIP Authority Blog:
    Nokia: Out of UC, In with Touch-Screen Phone
  • VoIP & Gadgets Blog:
    Triple Play Moving to Quintuple Play?

    • Latest Whitepapers

  • The PBX Is Dead. Long Live the Integrated Communications System (ICS)
  • Best Practices for Voice Network Utilization
  • The Path to a Needs-based 9-1-1 Network
  • Signaling System 7 (SS7) Pocket Guide: Exclusive reference guide for SS7 signaling professionals
  • SIP Pocket Guide: Exclusive reference guide for Session Initiation Protocol (SIP) professionals
  • SIP Signaling and Session Control Part 1: Upgrading the Next-gen Network
  • Key Performance Indicators (KPIs): Leveraging signaling-based KPIs to optimize the network and improve the business
  • Mobile Security: Malicious attached are just around the corner. Are you protected?
  • Mobile Advertising: The Next Great Revenue Opportunity
  • Mobile Unified Communications: Delivering on the Promise of FMC Seamless Mobility