Pangea Communications Internet FAX ATA (ICSA-19-045-01)

The NCCIC has published an advisory on an authentication bypass using an alternate path or channel vulnerability in Pangea Communications Internet FAX ATA. Versions 3.1.8 and prior are affected. Successful exploitation of this vulnerability could cause the device to reboot and create a continual denial-of-service condition. Pangea Communications has contacted users of the affected product and have deployed a patch to resolve the issue. The NCCIC also advises on a series of mitigating measures for these vulnerabilities. Read the advisory at NCCIC/ICS-CERT.