Critical flaws found in VoIP products using H.323 protocol
VoIP products from vendors including Microsoft, Cisco and Nortel are affected
Story by Jaikumar Vijayan
JANUARY 13, 2004 ( COMPUTERWORLD ) – Several critical vulnerabilities have been discovered in voice over Internet Protocol (VoIP) and videoconferencing products based on the H.323 protocol that’s used in IP telephony applications to exchange audio and video communications.
VoIP products from several vendors, including Microsoft Corp., Cisco Systems Inc. and Nortel Networks Ltd., are affected by the flaws, with risks including denial-of-service attacks and remote system compromise, according to an advisory from Atlanta-based Internet Security Systems Inc. (ISS).