 |
 |
    |
Avaya 4602SW SIP Phone accepts SIP requests from random source IP address
OverviewAvaya 4602SW IP Phone accepts SIP requests from random source IP address allowing an attacker to send malicious messages directly to the phone. ImpactAttacker can bypass the security mechanisms implemented at the server by sending malicious messages directly to the phone. Description
Avaya 4602SW can be used as a SIP-based IP phone in conjunction a SIP call server. After successfully registering with SIP registrar, the phone is ready to make and receive calls. As a best practice the SIP endpoint should accept SIP requests from a configured SIP server. However, 4602SW IP phone accepts SIP INVITE requests from a random source IP address. This may allow an attacker to send malicious messages directly to the phone bypassing any security mechanisms that may be in place at the server. Solution
Phone SIP stack implementations should be patched to accept SIP requests from configured server. Alternatively, separate voice and data VLANs can be used with a firewall at the crossover point. For more information on any of these threat advisories, please email Sipera VIPER Lab at viper@sipera.com |
Unified Communications Unleashed
Sipera Systems is the worldwide market leader in solutions for the rapid and simple adoption of Unified Communications (UC).
Thousands of users around the globe rely on Sipera to secure VoIP, IP video, collaboration, messaging and dozens of other high-performance applications.
Sipera’s groundbreaking “Borderless UC” enables controlled communications to any device in any location.
Years of UC Security experience is contained in Sipera unified communications (UC-Sec) products. These appliances benefit from the research conducted by Sipera VIPER Lab to provide comprehensive threat protection, policy enforcement, access control, and privacy in a single, real-time appliance.