[Partysip-dev] Re: [Sipforum-discussion] CERT Alert re: SIP Security Is

partysip-dev

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Partysip-dev] Re: [Sipforum-discussion] CERT Alert re: SIP Security Is

From:	Aymeric Moizard
Subject:	[Partysip-dev] Re: [Sipforum-discussion] CERT Alert re: SIP Security Issues
Date:	Mon, 24 Feb 2003 18:51:18 +0100 (CET)

Following the link below, you'll find links to a
java application for testing SIP applications behaviors
for many different scenarios.

>From what I can see, this is mainly usefull for testing the
parser robustness against malformed or unusual messages.

I ran a lot of them against partysip and found 2 bugs
related to those messages within the code of partysip.

By now, I found no issue with oSIP... Great!

If you want to test the scenarios against partysip , at
least use the CVS!

Good testing day.
Aymeric

On Mon, 24 Feb 2003, Jeff Pulver wrote:

> Hi All,
>
> Over the weekend, I saw the following CERT Advisory, CA-2003-06, "Multiple
> vulnerabilities in implementations of the Session Initiation Protocol
> (SIP)" posted to: ( http://www.cert.org/advisories/CA-2003-06.html ).
>
> Just wanted to make sure everyone on the list was aware of this CERT
> Advisory.
>
>
> Best regards,
>
> Jeff Pulver
> http://pulver.com/fwd
>
>
>
>

[Prev in Thread]

Current Thread

[Next in Thread]

[Partysip-dev] Re: [Sipforum-discussion] CERT Alert re: SIP Security Issues, Aymeric Moizard <=

Prev by Date: [Partysip-dev] A new release is about to be available.
Next by Date: [Partysip-dev] libosip-0.9.5 and partysip-0.5.5 are out!
Previous by thread: [Partysip-dev] A new release is about to be available.
Next by thread: [Partysip-dev] libosip-0.9.5 and partysip-0.5.5 are out!
Index(es):
- Date
- Thread