=”EN-GB”>The annual gathering of the security experts at the Caesar’s place organized a presentation where it was revealed by Sipera about the potential threats of VoIP. During the annual Black Hat conference at Las Vegas, Sipera showed a technique that permitted to take control of a weakness of the PC enabled VoIP as well as the Session Initiation Protocol (SIP). SIP is known as an application-layer

control protocol that is applied to create, cease or modify sessions in PBXs, VoIP and other similar technologies.

It was confirmed by the company with the assistance of their own VIPER lab research unit, which took command of a PC enabled with a soft phonetaking advantage VoIP application. These have been accomplished by the injection of buffer overflow along with an executable inside it while making a SIP-initiated call. All these had been revealed by the chief marketing officer of SIP, Eric Winsborrow.

According to Winsborrow, the technique that has been discussed is capable of taking the profits and advantages from the flaws of VoIP and SIP.

From: scmagazine