OmniPCX Enterprise Audio Rerouting Information Disclosure And Denial Of Service Vulnerability

OmniPCX Enterprise Audio Rerouting Information Disclosure And Denial Of Service Vulnerability

OmniPCX Enterprise is prone to an information-disclosure and denial-of-service vulnerability; fixes are available.

Attackers can exploit this issue to cause an IP Touch telephone to route incoming audio to an attacker-controlled source.

Users will be denied access to incoming audio on placed or received calls on the phone. Attackers could obtain potentially sensitive information while listening to the routed audio.

OmniPCX Enterprise 7.1 and prior versions are vulnerable.