Fuzzing for vulnerabilities in the VoIP space

Humberto Abdelnur 1 Radu State 1 Olivier Festor 1
1 MADYNES - Management of dynamic networks and services
INRIA Lorraine, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
Abstract : Voice over IP is emerging as the key technology in the current and future Internet. This paper shares some essential practical experience gathered over a two years period in searching for vulnerabilities in the VoIP space. We will show a terrifying landscape of the most dangerous vulnerabilities capable to lead to a complete compromise of an internal network. All of the described vulnerabilities have been disclosed responsibly by our group and were discovered using our in-house developed fuzzing software KIF. The paper provides also mitigation techniques for all described vulnerabilities.
Type de document :
Communication dans un congrès
17th EICAR Annual Conference, May 2008, Laval, France. European Institute for Computer Antivirus Research, 2008, 17th EICAR Annual Conference
Liste complète des métadonnées

https://hal.inria.fr/inria-00326086
Contributeur : Humberto Abdelnur <>
Soumis le : mercredi 1 octobre 2008 - 15:54:15
Dernière modification le : jeudi 11 janvier 2018 - 06:19:49

Identifiants

  • HAL Id : inria-00326086, version 1

Collections

Citation

Humberto Abdelnur, Radu State, Olivier Festor. Fuzzing for vulnerabilities in the VoIP space. 17th EICAR Annual Conference, May 2008, Laval, France. European Institute for Computer Antivirus Research, 2008, 17th EICAR Annual Conference. 〈inria-00326086〉

Partager

Métriques

Consultations de la notice

149