![]() |
Avaya 4602SW SIP Phone vulnerable to server impersonation
OverviewAvaya 4602SW IP phone does not enforce server authentication using cnonce parameter during MD5 digest authentication potentially allowing an attacker to impersonate the server ImpactAn active attacker may hijack the call and compromise confidentiality of VoIP communication Description
Avaya 4602SW can be used as a SIP-based IP phone in conjunction a SIP call server. It supports MD5 digest authentication method to authenticate itself to the server. However, it does not use cnonce parameter in Authorization header of SIP requests which leaves it vulnerable to server impersonation attacks. An active or man-in-the-middle attacker may impersonate the server and hijack communication between the un-suspecting phone and server. Attacker may then be able to listen to confidential conversations. Solution
Phone SIP stack implementations should be patched enforce server authentication. As a best practice, TLS with mutual authentication should be used. For more information on any of these threat advisories, please email Sipera VIPER Lab at viper@sipera.com |
Unified Communications Unleashed
Sipera Systems is the worldwide market leader in solutions for the rapid and simple adoption of Unified Communications (UC).
Thousands of users around the globe rely on Sipera to secure VoIP, IP video, collaboration, messaging and dozens of other high-performance applications.
Sipera’s groundbreaking “Borderless UC” enables controlled communications to any device in any location.
Years of UC Security experience is contained in Sipera unified communications (UC-Sec) products. These appliances benefit from the research conducted by Sipera VIPER Lab to provide comprehensive threat protection, policy enforcement, access control, and privacy in a single, real-time appliance.