VoIPShield

VoIPShield says Microsoft OCS vulnerable to attacks

Doug Mohney — Fri, 14 Nov 2008 15:56:05 -0500

Media stream attacks could affect Micrsofot Office Communications Server (OCS) as well as Office Communicator and Windows Messenger, says VoIPshield Systems. Microsoft is looking into the report.

VoIPshield says the vulnerabilities affect applications using protocols like RTP and, if exploited, could cause a denial of service (DOS) attack against not only the stated applications, but against the whole desktop. The company is not publicly disclosing details of the vulnerabilities, but says it confidentially discloses full details to affected vendors.

A spokesperson for VoIPshield Labs said the company is currently validating new research that shows an attacker can gain unauthorized access to an unsuspecting user's laptop by manipulating the packets of a VoIP phone call - an attack that might even be able to traverse a PSTN gateway. If possible, this attack would be a far more subtle and serious threat than a DoS attack since there would be no warning.

Microsoft is investigating the finding and recommends both managing patches and keeping all software up to date.

For more:
- Read the details of the alleged vulnerability. Article.

The Ease of Hacking VoIP

Doug Mohney — Sun, 03 Aug 2008 21:54:14 -0400

Most of the 300,000 privately owned IP PBX systems throughout the U.S. are "wide open" to anyone that wants to hack them, says ChannelWeb. Compounding matters are a lack of regulatory interest and failure of vendors to disclose vulnerabilities.

With VoIP systems being implemented on data LANs and blended with other software for unified communications solutions, the potential for mischief can get very large very quickly. VoIPshield has been posting and demonstrating publicly documented (i.e. available through The Google) hacks. While Cisco Call Manager gets a workout on how easy it is to exploit, the real problem lies in companies not updating their VoIP and IP PBX software with the latest security patches and fixes like they do all with all their other software.

If you're not worried yet, there's a free utility called VoIPhopper to jump between voice and data VLANs so one can easily bypass firewalls and nearly all the IDS software for sale today.

For more:
- Hacking VoIP is easy, reports ChannelWeb

Related articles:
Last HOPE Launches Security Season
SPOTLIGHT: Survey: U.S. firms lax about VoIP security

Avaya, Cisco and Nortel Patching VoIP ASAP

Doug Mohney — Tue, 24 Jun 2008 22:48:49 -0400

VoIP customers of Avaya, Cisco and Nortel should be on the lookout for patches today by 12 p.m. EDT to correct security vulnerabilities discovered by VoIPshield Laboratories.

According to Network World, VoIPShield earlier found and quietly reported the problems to the three vendors to give them time to develop patches for the flaws. Details of the vulnerabilities and vendor fixes are scheduled to be released in a simultaneous announcement between the three VoIP vendors and the security company. Two of the three vendors are expected to issue patches with the third to issue an advisory.

Vulnerabilities found affect VoIP PBXes and softphone software. If exploited, consequences could include remote code execution, unauthorized access, denial of service, and information harvesting.

Avaya, Cisco and Nortel were chosen by VoIPshield for testing because they represent the bulk of IP PBX sales in North America. Microsoft has been included in the next round of testing with results expected to be announced in about four months.

For more
- Network World reports Avaya, Cisco and Nortel VoIP vulnerabilities

Related articles:
Newport Networks Riles Up VoIP Security Fears
Circle the wagons, enterprise VoIP is under attack
Nortel Adds VoIP Security Thru SecureLogix