How are VoIP networks weak and vulnerable to attack and catastrophic failure? Securing VoIP Networks, the new book by Peter Thermos and Ari Takanen, looks at VoIP infrastructure and analyzes its vulnerabilities much as the
Open Web Application Security Project did for Web-related vulnerabilities and Mitre did with its Common Weakness Enumeration dictionary for software. And it’s about human failings, too, not just technology problems.
Click to see: Top 10 vulnerabilities list
Read the latest WhitePaper - Speeding Network Operations Problem Diagnosis with Route Analytics
Here are the top VoIP vulnerabilities explained in Securing VoIP Networks:
1. Insufficient verification of data: In VoIP implementations, this can enable man-in the-middle attacks.
2. Execution flaws: Standard databases are typically used as the backbone of VoIP services and registrations. Implementation has to be paranoid in filtering out
active content such as SQL queries from user-provided data such as user names, passwords, and Session Initiation Protocol (SIP) URLs. The majority of problems relating to execution flaws result from bad input filtering and insecure programming
practices.
3. String/array/pointer manipulation flaws: Malformed packets with unexpected structures and content can exist in any protocol
messages, including SIP, H.323, SDP, MGCP, RTP, and SRTP. Most typical malformed messages include buffer-overflow attacks and other boundary-value conditions. The result is that the input given by the attacker is
written over other internal memory content, such as registers and pointers, which will let the attacker take full control
of the vulnerable process.
|
