Registration hijacking VoIP-SIP Security

This attack modifies the registration tables to implement either a DoS or a redirection. Through listening to the network, the attacker extracts a REGISTER  message, and sends a forged one with the “expired” field containing the value 0.

This will remove the register containing the targets contact, while his phone will still believe it’s registered, rendering the user impossible to contact. The attacker can then register himself in the pla ce of his victim if he wants to redirect calls.

The attacker must be able to listen for a REGISTER request, and send a forged one
to the registrar.
Read More:  http://www.vadese.org/files/upload/Best_practices_VoIP_en_v20.pdf

Related post



Newer Post Older Post

0 comments:

Post a Comment

 

Wiki Voip And Fax Tutorials Copyright © 2010 Labloub