Voice Vulnerabilities in Cisco IOS and Cisco Unified Communications Manager - Cisco Systems
High Nessus Plugin ID 49007
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionMultiple voice-related vulnerabilities are identified in Cisco IOS software, one of which is also shared with Cisco Unified Communications Manager. These vulnerabilities pertain to the following protocols or features:
- Session Initiation Protocol (SIP)
- Media Gateway Control Protocol (MGCP)
- Signaling protocols H.323, H.254
- Real-time Transport Protocol (RTP)
- Facsimile reception
There are no workarounds available to mitigate the effects of any of the vulnerabilities apart from disabling the protocol or feature itself.
SolutionApply the relevant patch referenced in Cisco Security Advisory cisco-sa-20070808-IOS-voice.