Recent Posts

Search Blog

  • Search Blog
    Google

    WWW
    voipsecurityblog.typepad.com
Subscribe to this blog's feed

June 2009

Sun Mon Tue Wed Thu Fri Sat
  1 2 3 4 5 6
7 8 9 10 11 12 13
14 15 16 17 18 19 20
21 22 23 24 25 26 27
28 29 30        

Archives

More...

Books

Conferences

Advisory Sites

Advisories

General Articles

« Presentation Describing How to Do Remote Eavesdropping on A Cisco Phone | Main | Low-hanging Fruit »

A Couple of Presentations on Some Minor Vulnerabilities with Nortel's Unistim Protocol

Here are a couple of very similar presentations by the folks at esentire on some relatively minor vulnerabilities with Nortel's Unistim protocol and the some of the IP phones that implement it. Its good to see some research into issues with proprietary (but common) protocols.

http://ysts.org/files/v10/ystsv10-eldon.pdf

http://www.cansecwest.com/slides07/csw07-sprickerhoff-gowman.pdf

I haven't seen a formal advisory on these vulnerabilities. I suspect Nortel has already addressed them in recent firmware builds.

March 07, 2008 in Mark Collier, SecureLogix, VoIP Security, VoIP Vulnerabilities |

Comments

Verify your Comment

Previewing your Comment

Posted by:  | 

This is only a preview. Your comment has not yet been posted.

Working...
Your comment could not be posted. Error type:
Your comment has been posted. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.

Working...

Post a comment

About

My Photo
Add me to your TypePad People list

My Articles/Quotes

VoIP Security Blogs/Links

Tools

Interesting Documents

Interesting RFCs

Interesting Presentations

Voice SPAM/Voice Phishing

Phishing