A vulnerability in Cisco’s SPA300 and SPA500 IP phones could allow hackers to eavesdrop on private conversations from anywhere in the world, reports The Register.
The flaw, which has been confirmed by the company, is said to be the result of incorrect authentication settings in phones running version 7.5.5 of its firmware. If exploited, the vulnerability, could allow attackers to listen to calls, make calls remotely and even turn on the phone’s microphone to eavesdrop on the area around the device.
Cisco IP phone vulnerability could allow attackers to eavesdrop
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.