SIP Trunking Featured Article

January 08, 2013

Computer Scientists Find Vulnerabilities in Cisco VoIP Phones, Reveal a Symbiote-Protected Cisco IP Phone Solution

Contributing Writer

Over the years, VoIP equipment and software have been of great interest in the market. Cisco Systems, Inc., for example, is one such provider of voice and unified communications for business corporations and consumers alike. Up until now, Cisco has transformed the way people do business by manufacturing several unified IP phones, which deliver voice over IP (VoIP)-related communication services over wired Ethernet or wireless Wi-Fi.

Opposed to a traditional phone, VoIP offers unified messaging, advanced communication features and media conferencing with data and video as well. VoIP comes handy to reduce communication and infrastructure costs. It supports voice calls, call routing and voicemail on an internal or packet-switched network; Cisco relies on a Session Initiation Protocol (SIP) connection to provide Internet voice connectivity and exchange of communication.

Indeed, VoIP phones have become popular over the years, but they are not all that reliable for secure voice communications; although software is protected by strong encryption to avoid attacks and exploitation by hackers or eavesdroppers, explains Ang Cui, Columbia Engineering's Computer Science PhD candidate, who agrees with Salvatore Stolfo, a Computer Science Professor at Columbia University, who says that all VoIP phones – even Cisco VoIP phones – are able to reveal users’ private communications.

Just as any other Internet-connected device, IP telephony equipment like Cisco VoIP phones are also vulnerable to online risks, like ARP (Address Resolution Protocol) spoofing attacks. As a result, it may cause someone else to gain access and eavesdrop into VoIP communications.

Cui and Stolfo, who recently analyzed Cisco VoIP phones' firmware, discovered several vulnerabilities with the Unified IP Phones in the 7900 series running a version of Cisco IP Phone software up to and including 9.3.1-ES10. Last month, a presentation (available on YouTube) by Cui at the Chaos Computer Conference in Hamburg spoke of this exploitation on Cisco VoIP phones.

Even though the Cisco Unified Communications Manager provides certificate authentication and Public Key Infrastructure (PKI), both computer scientists say that to protect exploitation of user credentials, which are vulnerable to theft by an attacker able to penetrate an organization's network, Symbiote, a host-based root-kit injection detection mechanism, could be used to monitor gaps within the firmware to proactively protect and safeguard all kinds of embedded system attacks that can occur with Cisco’s voice-over-IP phones that go on the Internet.

Cisco has, however, released a patch that addresses the vulnerability in its VoIP phones, but it did not fix the problem to deter an attacker to eavesdrop on conversations without a user knowing he/she is being monitored, according to the computer scientists’ report. In fact, they claim the patch was ineffective.

As a result, Cisco’s A-Team is currently working on mitigations and a permanent patch to correct it once and for all. In the meantime, a security advisory describing the vulnerability – as a failure to properly validate certain system calls where it is possible for an attacker to overtake portions of the kernel and control the device – will soon be issued to affected users, said a Cisco’s spokesman.

Want to learn more about the latest in communications and technology? Then be sure to attend ITEXPO Miami 2013, Jan 29- Feb. 1 in Miami, Florida.  Stay in touch with everything happening at ITEXPO. Follow us on Twitter.

Edited by Rachel Ramsey
Subscribe here for your FREE
SIP TRUNKING enewslettter.

Featured Partner

Featured Whitepapers

SIP Security for the Enterprise
Voice over IP (VoIP) is incorporated into a variety of computer networks, both public and private, and used for everyday transactions and communications among carriers, businesses, government agencies...

Voice-Optimized Network Delivers Premier Call Experience
Customers equate call quality with business quality. Real-time communication, interpersonal interaction, and the cordial tone of a call center representative can create a positive impression of your business that no email can match.

Featured Datasheets

Ingate SIParator E-SBCs
Adopting SIP is a simple process with the Ingate SIParator, the secure enterprise session border controller (E-SBC). The SIParator makes secure SIP communications - including VoIP,SIP trunking and more - possible while working seamlessly with your existing network firewall.

Ingate Firewalls
Everyone is talking about enterprise usage of VoIP, instant messaging and other types of realtime communications including presence and conferencing.

SIP Trunk Solutions for Service Providers
The award-winning Ingate Firewall and Ingate SIParator deliver a high quality, reliable SIP trunk connection between the customer's IP-PBX and the service provider network, and solve interoperability issues to simplify deployments and support for remote diagnosis of reported issues.

Featured Case Studies

Case Study - Haiti
With this solution our doctors were able to reach anywhere in the world quickly and easily, to get consults from colleagues, facilitate treatment, order supplies 'on the fly' and also help victims report back to families. The solution from Business Mobility Systems and Ingate worked immediately.

Case Study - Turkish Petroleum
"With one Ingate at the customer headquarters, all of their remote workers can enjoy the benefits of Turkish Petroleum's IP-PBX from anywhere in the world.

Case Study - GCM
"The Ingate solution overcomes the NAT traversal hurdle and makes it possible to connect customers to our VoIP service, without the need of costly leased lines or support intensive VPN tunnels.

Case Study - Kool Smiles
"Ingate's solutions provide the advanced level of security necessary for this medical environment and the tools to make the interface to the service provider hassle-free."

Case Study - NMSAS
"This solution really saved the day for us," said Paul Mercier, IT Administrator, NMSAS. "We needed to leverage SIP trunks to reduce costs, and they had to work with our existing Microsoft OCS investment."

Discover Leisure Connects Remote Users to its IP-PBX
Discover Leisure is one of the largest resellers of caravans and motor homes in the UK. With 15 branch of?

Featured eBOOKS

Internet+: The Way Toward Global Unified Communication
Connecting the telephony of the enterprise PBX or Unified Communications (UC) system using SIP trunks instead of conventional telephone lines has been very successful in recent years.

What is SIP Trunking? Edition 2
SIP trunking is becoming more of a focus for service providers. One key issue many service providers face when deploying SIP trunks is NAT, or Network Address Translation, traversal.

What is SIP Trunking? Edition 1
A vast resource for information about all things SIP - including SIP, security, VoIP, SIP trunking and Unified Communications.

Featured Videos

E-SBCs AS The Demarcation Point:
Ingate's Steve Johnson talks to Erik Linask about the role session border controller plays as the demarcation point at...

Demystifying DPI
How can deep packet inspection protect your SIP traffic as well as your entire network?

Featured Resources

What's New

Presenting the New Ingate/Intertex Website:
Internet+ is an extended Internet access allowing high quality SIP (Session Initiation Protocol) based real-time person-to-person communication, everywhere and for any application. It applies to both fixed and mobile networks ...

Featured Blogs

Featured Webinars

Secure SIP Trunking:
What You Need to Know

Successfully Deploying Enterprise SIP Trunking:
Tools and Techniques for Overcoming Common Roadblocks

Featured Podcasts

Getting the Most Out of Your SIP Trunks:
Ingate's Steve Johnson and TMC's Erik Linask discuss how best practices forgetting the most out of SIP Trunking services and common pitfalls to avoid.