Avaya 4602SW SIP Phone Cnonce Parameter Authentication Spoofing Vulnerability

Attackers can exploit this vulnerability by sniffing SIP call server traffic for cnonces or by brute-forcing a distinct cnonce.


 

Privacy Statement
Copyright 2010, SecurityFocus