Mitel – Vulnerability in 6800 and 6900 SIP series phones

Advisory IDRSN-SIP-1649

Vulnerability Information

A key length vulnerability in the implementation of the SRTP 128-bit key on Mitel 6800 and 6900 SIP series phones, versions SP2 and earlier.

Technical Information

An attacker can launch a man-in-the-middle attack when SRTP is used in a call. A successful exploit may allow the attacker to intercept sensitive information.


The UCTM solution from RedShift Networks provides the industry’s first complete security solution developed to secure VOIP networks, endpoints and applications. His research team is constantly looking for new attack patterns, advanced penetration testing methods, vulnerability identification and deployment of new signatures for constantly subscribed clients. For more information visit

External Resources

Common Vulnerabilities and Exposures (CVE)