[VOIPSEC] Vonage To Make 911 An 'Opt-Out' Option
Robert Moskowitz
rgm at icsalabs.com
Mon May 16 13:44:54 CDT 2005
At 01:32 PM 5/13/2005, Kirill Bolshakov wrote:
>I would suggest considering a couple more ways of either getting into the
>signaling path (for attacks on digest auth or for providing fake servers)
>or obtaining the password:
>
>If DNS is used, the attack may be mounted against the DNS server the
>client is using. All SIP traffic gets redirected to the adversary's
>server. Then setup a fake server (including fake emergency service), mount
>an attack on digest auth, etc.
Good. I did forget the DNS redirect attack. thanks.
>Using the achievements of the previous attack, or by simply calling the
>user's UA, a PROTOS-like attack may be mounted against the UA software
>implementation. In case there are flaws in the implementation, this will
>lead to either DoS or remote control of the UA. In the latter case, an
>attempt to fetch user's login/password is a natural step.
Hmmm. I am trying to figure out if this is separate from any other attack
against a workstation that results in data stealing. It is a more focused,
and perhaps knows more about what needs to be stolen. I guess since we
want awareness of VoIP risks, getting UA writers to be diligent warrents
this being its own catagory.
Robert Moskowitz
Senior Technical Director
ICSA Labs, a division of Cybertrust, Inc.
W: 248-968-9809
F: 248-968-2824
VoIP: 248-291-0713
E: rgm at icsalabs.com
There's no limit to what can be accomplished if it doesn't matter who gets
the credit
More information about the Voipsec
mailing list