Cisco Security: patches now available for Cisco VoIP holes

As expected, Cisco Security on Wednesday announced software updates to fix two holes in its VoIP prodcuts. The Cisco Unified Communications Manager (CUCM), formerly Cisco CallManager, contains a vulnerability in the Computer Telephony Integration (CTI) Manager service that may allow a denial-of-service attack. Also, Cisco's Real-Time Information Server (RIS) Data Collector contains an authentication bypass hole that may expose information that is useful for hackers to mount other attacks. Both of these holes are fixed with software updates available now.

read more at:
http://www.networkworld.com/community/node/29366