State of Knowledge

March 2025

Notes on Vulnerabilties/Security advices

Please take note on Vulnerabilities/Security advice and their fixes in the list of this version comparison at https://support.estos.de/en/ecsta/versionsvergleich-ecsta#VersionsvergleichECSTA-Securityadvices/Vulnerabilites


ECSTA 7

ECSTA 6

ECSTA 5


ECSTA 7 Icon

Product lifecycle


END-OF-LIFE 2024

END-OF-LIFE 2021

Licensing
  • Standalone use without ProCall Enterprise
  • Licensing for ProCall 8 Enterprise via the UCServer
  • ProCall 8 Enterprise: now includes two ECSTA line licenses per ProCall user instead of one line license



System requirements

  • Microsoft Windows Server 2025/2022/2019/2016
  • Microsoft Windows 11/10

Multiple instances
64-bit

x64 Version of uaCSTA Server

  • Windows Server 2022/2019/2016
  • Windows 11/10

Multiple instances
32-bit and 64-bit

x64 Version of uaCSTA Server

  • Windows Server 2016/2012R2/2008 R2
  • Windows 10/8.1/7 SP1

Multiple instances
32-bit and 64-bit

x64 Version of uaCSTA Server

ECSTAs

  • ECSTA for Alcatel OmniPCX
  • ECSTA for Avaya IP Office
  • ECSTA for Avaya ACM
  • ECSTA for BroadWorks XSI
  • ECSTA for Mitel MiVoice 5000
  • ECSTA for Mitel MiVoice Business 8.0
  • ECSTA for Mitel MiVoice Office 400
  • ECSTA for OpenScape Business
  • ECSTA for OpenScape 4000
  • ECSTA for OpenScape Voice
  • ECSTA for SIP Phones
    • Auerswald
    • Gigaset
    • Mitel
    • Poly
    • snom
    • Yealink
  • ECSTA for Communi5 (former ECSTA for Teles Voice Application Server)
  • ECSTA for Alcatel OmniPCX
  • ECSTA for Avaya CS1000 (EOL – End of Life)
  • ECSTA for Avaya IP Office
  • ECSTA for Avaya ACM
  • ECSTA for BroadWorks XSI
    ECSTA for Cisco CME (EOL – End of Life)
  • ECSTA for HiPath 2000 3000 5000 (EOL – End of Life)
  • ECSTA for Mitel 100 (EOL – End of Life)
  • ECSTA for Mitel MiVoice 5000
  • ECSTA for Mitel MiVoice Business 8.0
  • ECSTA for Mitel MiVoice Office 400
  • ECSTA for OpenScape Business
  • ECSTA for OpenScape 4000
  • ECSTA for OpenScape Voice
  • ECSTA for Panasonic
  • ECSTA for SIP Phones
    • Auerswald
    • Gigaset
    • Mitel
    • Poly
    • snom
    • Yealink
  • ECSTA for Communi5 (former ECSTA for Teles Voice Application Server)
  • ECSTA for Alcatel OmniPCX
  • ECSTA for Avaya CS1000
  • ECSTA for Avaya ACM
  • ECSTA for BroadWorks XSI
    ECSTA for CallManager Express
  • ECSTA for HiPath 2000 3000 5000
  • ECSTA for HiPath 4000CAP
  • ECSTA for Mitel 100
  • ECSTA for Mitel MiVoice 5000
  • ECSTA for Mitel MiVoice Business 8.0
  • ECSTA for Mitel MiVoice Office 400
  • ECSTA for OpenScape Business
  • ECSTA for OpenScape Voice
  • ECSTA for Panasonic
  • ECSTA for SIP Phones
    • Auerswald
    • Mitel
    • snom
    • Yealink
  • ECSTA for Teles Voice Application Server


Security advice/
Vulnerabilities


ECSTA 6

ECSTA 5

Vulnerability zlib memory corruption (CVE-2018-25032)


(Haken)
fixed

(Fehler)
not resolved
(End-of-Life)

(Warnung)Upgrade required

Log4Spring (CVE-2022-22963)


not affected

not affected

Critical vulnerabilities in PJSIP


not affected

not affected

log4j (CVE-2021-44228)

not affected

not affected

Security advice/
Vulnerabilities

ECSTA for SIP Phones 6

ECSTA for SIP Phones 5

Expat ("libexpat") before 2.4.4  


(Haken)
fixed

(Fehler)
not resolved
(End-of-Life)

(Warnung)Upgrade required