[OpenSIPS-Users] question about rtpbleed and MediaProxy by Ag-Projects

Bogdan-Andrei Iancu bogdan at opensips.org
Mon Mar 12 10:19:58 EDT 2018

Hi Carlos,

See inline

Bogdan-Andrei Iancu

OpenSIPS Founder and Developer
OpenSIPS Summit 2018

On 03/12/2018 12:58 PM, Carlos Oliva wrote:
> Hi List:
> I have some questions about mediaproxy 2 ad rtpbleed vulnerability 
> https://www.rtpbleed.com/
> Is MediaProxy 2  vulnerable to this attack?
Not 100% sure, but given the way mediaproxy worsk, I would say yes.
> If so, the media can be hijacked only at very begining orthroughout 
> the entire call?
only at the beginning when the other end of the media leg is learned 
based on the incoming traffic.
> If an attacker hijacks the media the other party will stop hears the 
> call or the RTP will be send to both ends?
IF the hijack is done, the regular user will not send  / receive any 
more RTP traffic as  the media server will talk only to the hijacker .
> Thanks for your help!
> thanks and Regards,
> Carlos Oliva*
> *
> _______________________________________________
> Users mailing list
> Users at lists.opensips.org
> http://lists.opensips.org/cgi-bin/mailman/listinfo/users

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opensips.org/pipermail/users/attachments/20180312/d0ae6a85/attachment.html>

More information about the Users mailing list