Networking Pipeline says two security holes in Cisco CallManager software means at best there could be a “denial-of-service style crash, at worst, a situation where the attacker could redirect calls at will or even eavesdrop on conversations.” ISS press release and Cisco advisory!