January 13th, 2004, 09:36 PM
Multiple Vendor H.323 Implementation Vulnerabilities
Today was a big day w/ major VoIP vulns, and three bulletins from Microsoft. Most security companies are not responding.
No updates to Cisco IDS, they are too busy patching their own network.
No updates from Intruvert, they all quit and started an anti-spam company.
No updates from Symantec, they are waiting for the snort signatures.
No updates from Snort, they are waiting for free signatures to publish and hold back for six months from the O/S community.
No updates from Nessus, ditto snort.