[OpenSIPS-Users] question about rtpbleed and MediaProxy by Ag-Projects
Bogdan-Andrei Iancu
bogdan at opensips.org
Mon Mar 12 10:19:58 EDT 2018
Hi Carlos,
See inline
Bogdan-Andrei Iancu
OpenSIPS Founder and Developer
http://www.opensips-solutions.com
OpenSIPS Summit 2018
http://www.opensips.org/events/Summit-2018Amsterdam
On 03/12/2018 12:58 PM, Carlos Oliva wrote:
> Hi List:
>
> I have some questions about mediaproxy 2 ad rtpbleed vulnerability
> https://www.rtpbleed.com/
>
> Is MediaProxy 2 vulnerable to this attack?
Not 100% sure, but given the way mediaproxy worsk, I would say yes.
>
> If so, the media can be hijacked only at very begining orthroughout
> the entire call?
only at the beginning when the other end of the media leg is learned
based on the incoming traffic.
>
> If an attacker hijacks the media the other party will stop hears the
> call or the RTP will be send to both ends?
IF the hijack is done, the regular user will not send / receive any
more RTP traffic as the media server will talk only to the hijacker .
>
>
> Thanks for your help!
>
> thanks and Regards,
>
> Carlos Oliva*
> *
>
>
> _______________________________________________
> Users mailing list
> Users at lists.opensips.org
> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opensips.org/pipermail/users/attachments/20180312/d0ae6a85/attachment.html>
More information about the Users
mailing list