Condorlab

Cisco – Cisco SPA 300 and 500 Series IP Phones could Allow Remote Users Listen to and Make Phone Calls


Advisory ID

RSN-UT-0002


Vulnerability Information

 

 

Using a crafted XML request, an attacker can read audio-stream data or originate telephone calls on the Cisco Small Business IP phones SPA 300 and SPA 500 7.5.5. in their default configuration which does not properly support authentication.


Technical Information

 

 

A vulnerability was reported in Cisco SPA 300 and 500 Series IP phones. A remote user can obtain potentially sensitive information on the target system. A remote user can make phone calls. A remote user can send a specially crafted XML request to listen to a remote audio stream or make phone calls on the target device.  For more information on the affected versions, CVE-2015-0670 was assigned for this bug.


 

Release Date

20/03/2015


Solutions

 

 

 

The UCTM solution from RedShift Networks provides the industry’s first complete security solution developed to secure VOIP networks, endpoints and applications. His research team Condor-Labs.com is constantly looking for new attack patterns, advanced penetration testing methods, vulnerability identification and deployment of new signatures for constantly subscribed clients. For more information visit www.redshiftnetworks.com


External Resources

 

 

Cisco Security Advisory

http://tools.cisco.com/security/center/viewAlert.x?alertId=37946

Common Vulnerabilities and Exposures (CVE)

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0670