Title: Avaya DECT Products Information Disclosure Weakness
Severity: MODERATE
Description:
Digital Enhanced Cordless Telecommunications (DECT) is a standard for wireless telephones. IP DECT and ISDN DECT are the two Avaya telephony systems that use DECT.
An information-disclosure weakness affects DECT. An attacker may exploit the issue to eavesdrop on calls by posing as a wireless base station and then deactivating the encryption or diverting the traffic.
Successful exploitation of this issue will allow attackers to obtain sensitive information that may aid in further attacks.
Affected Products:
- Avaya IP DECT
- Avaya ISDN DECT
References:
- Andreas Schuler, Erik Tews, Ralf-Philipp Weinmann: DECT security
- Avaya: Vulnerabilities in the Digital Enhanced Cordless Telecommunications (DECT) Wirel
- Avaya Inc.: Avaya Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
