CVE-2007-5468

Name of the Vulnerable Software and Affected Versions: Cisco CallManager version 5.1.1.3000-5

Description: The issue allows remote attackers to use sniffed Digest authentication credentials to call arbitrary telephone numbers or spoof caller ID, which can lead to toll fraud and authentication forward attacks. This occurs because Cisco CallManager does not verify the Digest authentication header URI against the Request URI in SIP messages.

Recommendations: For Cisco CallManager version 5.1.1.3000-5, consider implementing additional authentication measures or restricting access to the SIP messaging system to minimize the risk of exploitation. As a temporary workaround, restrict the use of Digest authentication in SIP messages until a patch is available.