FierceWirelessFierceWirelessEuropeFierceDeveloperFierceMobileContentFierceBroadbandWirelessFierceEnterpriseCommunicationsFierceIPTVFierceTelecomFierceOnlineVideoFierceCable

Free Newsletter

About | View Sample | Privacy

VoIPShield says Microsoft OCS vulnerable to attacks

November 14, 2008 — 3:56pm ET | By
Tools

Media stream attacks could affect Micrsofot Office Communications Server (OCS) as well as Office Communicator and Windows Messenger, says VoIPshield Systems. Microsoft is looking into the report.

VoIPshield says the vulnerabilities affect applications using protocols like RTP and, if exploited, could cause a denial of service (DOS) attack against not only the stated applications, but against the whole desktop. The company is not publicly disclosing details of the vulnerabilities, but says it confidentially discloses full details to affected vendors.

A spokesperson for VoIPshield Labs said the company is currently validating new research that shows an attacker can gain unauthorized access to an unsuspecting user's laptop by manipulating the packets of a VoIP phone call - an attack that might even be able to traverse a PSTN gateway. If possible, this attack would be a far more subtle and serious threat than a DoS attack since there would be no warning.

Microsoft is investigating the finding and recommends both managing patches and keeping all software up to date.

For more:
- Read the details of the alleged vulnerability.  Article.

Related articles
Arbor Networks: VoIP, IPv6 emerging security threats - FierceVoIP
VoIP Security and the Circle of Trust - FierceVoIP


SHARE
WITH:
Email Twitter Facebook LinkedIn StumbleUpon
Get Your FREE FierceEnterpriseCommunications Email Newsletter:


More stories about Rtp   Denial Of Service   Security Threats   VoIP Security   VoIP   VoIPShield   Vulnerability   Vulnerabilities   Unauthorized Access   Denial Of Service Dos