CONTACT SALES
Internet Telephony Product of the Year

White hats expose VoIP security threat

ZDNet UK, Aug 07, 2007

Penetration testers have demonstrated a way of compromising computers by subverting VoIP software clients.

The testers, who are from VoIP security firm Sipera, claim that they have found similar vulnerabilities in several vendors' enterprise VoIP software clients. Sipera would not reveal the identity of the affected vendors, because they have not yet brought out patches.

The testers demonstrated a proof-of-concept exploit for one of the VoIP clients at the Black Hat security conference in Las Vegas on Wednesday. On a laptop running Windows XP SP2 with a Windows firewall, running McAfee antivirus, Sipera product manager Sachin Joglekar demonstrated a vulnerability that allows a hacker to cause a buffer-overflow condition.

UC Security Defined
Sipera Systems, the leader in real-time Unified Communications (UC) security, is the choice of enterprises and service providers around the world to support their mission-critical UC deployments.
Sipera offers groundbreaking, production-proven solutions that secure voice, video, messaging, collaboration, and other real-time communications in converged IP networks, boosting compliance with information security requirements.
Backed by the industry-leading research of the VIPER lab, Sipera's solutions provide comprehensive threat protection, policy enforcement, access control, and encryption in a single flexible appliance.

© Copyright 2010 Sipera Systems, Inc. All rights reserved. Sipera, Sipera UC-Sec and related products, SLiC, Sipera LAVA and Sipera VIPER are trademarks of Sipera Systems, Inc.