[VOIPSEC] Remote Denial of Service vulnerability in SIP server
zubair.rafique at nexginrc.org
zubair.rafique at nexginrc.org
Tue Mar 3 07:19:27 GMT 2009
Hi all,
Recently the white hat hackers/researchers from nexGIN RC discover the
remote Denial of Service Vulnerability in OpenSBC SIP server. The
"INVITE of Death" vulnerability can cause a server to crash by sending
a single packet. For more details visit. http://nexginrc.org/. And
about the advisory of vulnerability
http://ims-bisf.nexginrc.org/OpenSBC-vul.html. The authors website is
http://www.nexginrc.org/~zubair.rafique/.
The research work shows that a weak parser implementation in SIP
servers can cause an enterprise a severe financial lose.
Regards
M. Zubair Rafique
zubair[dot]rafique[at]nexginrc[dot]org
More information about the Voipsec
mailing list