mailing list archives
RPS/APS vulnerability in snom/yealink and others
From: "Cal Leeming \[Simplicity Media Ltd\]" <cal.leeming () simplicitymedialtd co uk>
Date: Wed, 23 Oct 2013 23:10:30 +0100
Discovered a vulnerability that allows for hundreds of thousands of
SIP accounts to be compromised remotely.
Found a year ago, partial vendor fixes but still vuln as of today,
disclosed a few hours ago exclusively to the FreeSWITCH community -
23rd Oct 2013.
Live disclosure can be seen here;
Slides are here;
- RPS/APS vulnerability in snom/yealink and others Cal Leeming \[Simplicity Media Ltd\] (Oct 24)