Here are a couple of very similar presentations by the folks at esentire on some relatively minor vulnerabilities with Nortel's Unistim protocol and the some of the IP phones that implement it. Its good to see some research into issues with proprietary (but common) protocols.
http://ysts.org/files/v10/ystsv10-eldon.pdf
http://www.cansecwest.com/slides07/csw07-sprickerhoff-gowman.pdf
I haven't seen a formal advisory on these vulnerabilities. I suspect Nortel has already addressed them in recent firmware builds.
Comments