Fuzzing for vulnerabilities in the VoIP space - INRIA - Institut National de Recherche en Informatique et en Automatique Accéder directement au contenu
Communication Dans Un Congrès Année : 2008

Fuzzing for vulnerabilities in the VoIP space

Humberto Abdelnur
  • Fonction : Auteur
  • PersonId : 831106
Management of dynamic networks and services
Radu State
  • Fonction : Auteur
  • PersonId : 755670
  • IdRef : 059893591
Management of dynamic networks and services
Olivier Festor
Management of dynamic networks and services
CV

Résumé

Voice over IP is emerging as the key technology in the current and future Internet. This paper shares some essential practical experience gathered over a two years period in searching for vulnerabilities in the VoIP space. We will show a terrifying landscape of the most dangerous vulnerabilities capable to lead to a complete compromise of an internal network. All of the described vulnerabilities have been disclosed responsibly by our group and were discovered using our in-house developed fuzzing software KIF. The paper provides also mitigation techniques for all described vulnerabilities.

Domaines

Réseaux et télécommunications [cs.NI]

Humberto Abdelnur  : Connectez-vous pour contacter le contributeur

https://inria.hal.science/inria-00326086

Soumis le : mercredi 1 octobre 2008-15:54:15

Dernière modification le : vendredi 24 mars 2023-14:52:51

Fichier non déposé

Dates et versions

inria-00326086 , version 1 (01-10-2008)

Identifiants

  • HAL Id : inria-00326086 , version 1

Citer

Humberto Abdelnur, Radu State, Olivier Festor. Fuzzing for vulnerabilities in the VoIP space. 17th EICAR Annual Conference, May 2008, Laval, France. ⟨inria-00326086⟩

Exporter

BibTeX XML-TEI Dublin Core DC Terms EndNote DataCite

Collections

CNRS INRIA UNIV-LORRAINE INRIA2 LORIA
81 Consultations
0 Téléchargements

Partager

Gmail Facebook X LinkedIn More