Call redirection using 301/302 response messages VoIP-SIP Security

The aim of this attack is to redirect a call to a third person (usually himself). The attacker starts by listening to the network to intercept an INVITE message. With the information, he can either construct a false 301 (moved permanently) of 302 (moved temporarily) message, and send it to the caller before a legitimate answer can arrive. 
Once the caller receives the moved message, it will automatically attempt to contact the address provided by the attacker.
The attacker must be able to capture an INVTE message, and then send a 301 or
302 message before the legitimate answer.
        RFC 3261 - SIP: Session Initiation Protocol

Related post

Newer Post Older Post


Post a Comment


Wiki Voip And Fax Tutorials Copyright © 2010 Labloub