I just wanted to get a temperature check from other members of the community about scanning IP Phones.
I have been in discussion with a certain IP Phone vendor (not Cisco) and they inform me that my request to allow me to scan their IP Phone Handsets is unheard of "as no one else does that".
It is my belief that anyone currently with IP Phones includes them in the scanning regime - does anyone do anything different?
I've been trying to include ip phones in scans. At this time I only was able to do a discoveryscan and identify ip hones based on hostname. MVM doesn't detect the OS and vulnerability scans are not possible then.
If anyone has other experiences with this I'd also like to know.