VoIP Threat Advisories by Sipera VIPER Lab

Generic Threats

Summary	Type	Date	Severity	System Affected
Unencrypted RTP vulnerable to capture and reconstruction [more]	Eavesdropping	2007.05.15	High	SIP Endpoints
RTCP may expose internal IP addresses and private user names across NAT device [more]	Privacy	2007.05.15	Medium	SIP Endpoints
Weak SRTP encryption algorithm may be brute-forced to compromise confidentiality of communication [more]	Eavesdropping	2007.05.15	Medium	SIP Endpoints

Specific Threats

Summary	Type	Date	Severity	System Affected
Vonage VoIP phone adapter vulnerable to server impersonation [more]	Spoofing	2007.10.24	High	Vonage Motorola Phone Adapter (VT 2142-VD)
Vonage SIP servers vulnerable to registration replay attack [more]	Weak Authentication	2007.10.24	Medium	Protocol implementation in Vonage service
Vonage voice conversation may be vulnerable to eavesdropping [more]	Eavesdropping	2007.10.24	High	Vonage Motorola Phone Adapter (VT 2142-VD)

UC Security Defined
Sipera Systems, the leader in real-time Unified Communications (UC) security, is the choice of enterprises and service providers around the world to support their mission-critical UC deployments.
Sipera offers groundbreaking, production-proven solutions that secure voice, video, messaging, collaboration, and other real-time communications in converged IP networks, boosting compliance with information security requirements.
Backed by the industry-leading research of the VIPER lab, Sipera's solutions provide comprehensive threat protection, policy enforcement, access control, and encryption in a single flexible appliance.