VoIP-SIP Security DoS using SIP BYE requests

Normally the BYE message is used to finish a call, but this attack uses it to finish the call prematurely.
The attacker must listen to signalisation messages to establish a context. The attacker can then make a fake BYE message that he can send to either participant.

The phone will believe the other side hung up, and end the conversation.The attacker must be able to listen to the network traffic and identify SIP messages.The attacker must also be able to send the BYE message to the target during theconversation.

Read More:http://www.vadese.org/files/upload/Best_practices_VoIP_en_v20.pdf

Related post



Newer Post Older Post

0 comments:

Post a Comment

 

Wiki Voip And Fax Tutorials Copyright © 2010 Labloub