Vigil@nce - Cisco IOS: crosstalk via H.323 Multicast MoH
August 2012 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
When CUCM (Cisco Unified Communications Manager) is configured
with a multicast H.323 music on hold, an attacker can listen to
other talks.
Severity: 2/4
Creation date: 07/08/2012
IMPACTED PRODUCTS
– Cisco IOS
– Cisco Router
DESCRIPTION OF THE VULNERABILITY
The CUCM (Cisco Unified Communications Manager) product can be
configured with several types of music on hold:
– unicast (one recipient)
– multicast SIP
– multicast H.323
The Cisco IOS system processes multicast H.323 music on hold.
However, in this case, an attacker can listen to other talks.
Technical details are unknown.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-IOS-crosstalk-via-H-323-Multicast-MoH-11825