Original release date: January 13, 2004
Last revised: January 15, 2004
Source: CERT/CC, NISCC
A complete revision history can be found at the end of this file.
Systems Affected
Many software and hardware systems that implement the H.323 protocol
Examples include:
* Voice over Internet Protocol (VoIP) devices and software
* Video conferencing equipment and software
* Session Initiation Protocol (SIP) devices and software
* Media Gateway Control Protocol (MGCP) devices and software
* Other networking equipment that may process H.323 traffic (e.g., routers and firewalls)
Overview
A number of vulnerabilities have been discovered in various implementations of the multimedia telephony protocol H.323. Voice over Internet Protocol (VoIP) and video conferencing equipment and software can use these protocols to communicate over a variety of computer networks.