Blog
Vulnerability in Cisco IP Phones Allows Attackers to Remotely Eavesdrop on Audio Streams
By David Bisson on Mon, 03/23/2015
A vulnerability in Cisco IP phones could allow unauthenticated attackers to remotely listen in on the phones’ audio streams. According to an advisory Cisco published on its website, the vulnerability (CVE-2015-0670) results from improper authentication in the default configuration of certain Cisco IP phones.
“An attacker could exploit this...