Patch/Configuration Management, Vulnerability Management

Cisco patches VoIP flaws

Cisco has patched its Unified CallManager and Presence Server software to fix vulnerabilities that could allow DoS attacks.

In an advisory released Wednesday, the networking giant said CallManager versions 3.3, 4.1, 4.2 and 5.0, in addition to Presence Server version 1.0, are affected by the flaws.

The most severe of the five vulnerabilities was rated 4.7 out of 10 by Cisco’s vulnerability scoring system.

Cisco said in its advisory that attacks on the flaws could result in the failure of Unified CallManager and Unified Presence Server, resulting in DoS attacks. There is no workaround for the issue, according to Cisco.

Secunia ranked the flaws as "moderately critical" today, meaning that the flaws are typically used for DoS attacks.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.