Collaborate Disseminate
A high-risk stack overflow vulnerability (CVE-2022-20968) may allow attackers to DoS or possibly even execute code remotely on Cisco 7800 and 8800 Series IP phones, the company has confirmed. Cisco‘s PSIRT is also aware that proof-of-concept expl… Continue reading Vulnerability with public PoC affects Cisco IP phones, fix unavailable (CVE-2022-20968)
Cisco stomped out a critical vulnerability in its IP Phone web server that could enable remote code execution by an unauthenticated attacker. Continue reading Cisco IP Phone Harbors Critical RCE Flaw
If you have Cisco equipment in your enterprise network – and chances are good that you have – you should check immediately which feature the newly revealed CDPwn vulnerabilities in Cisco’ proprietary device discovery protocol and impl… Continue reading CDPwn vulnerabilities open millions of Cisco enterprise devices to attack
Attackers can remotely compromise multiple network devices (IP PBX, conferencing gear and IP phones), installing malware and eavesdropping via video and audio functions. Continue reading Bugs in Grandstream Gear Lay Open SMBs to Range of Attacks
DDoS attacks is relentless. New techniques, new targets and a new class of attackers continue to reinvigorate one of the internet’s oldest nemesis. Continue reading DDoS Attacks Get Bigger, Smarter and More Diverse
Cisco also patched three medium-security flaws in its network security offerings; and, it issued a fix for a high-severity bug in its platform for mobile operator routers, StarOS. Continue reading Cisco Patches High-Severity Bug in VoIP Phones
Obihai Technology recently patched a slew of issues in its ObiPhone IP phone products that could have led to memory corruption, a buffer overflow, and denial of service conditions, among other outcomes.
Continue reading Obihai Patches Memory Corruption, DoS, CSRF Vulnerabilities in IP Phones