CAPEC-5: Blue Boxing
CAPEC版本: 3.9
更新日期: 2023-01-24
攻击模式描述
前提条件
- System must use weak authentication mechanisms for administrative functions.
所需技能
所需资源
- CCITT-5 or other vulnerable lines, with the ability to send tones such as combined 2,400 Hz and 2,600 Hz tones to the switch
后果影响
影响范围: Availability
技术影响: Resource Consumption
说明: Denial of Service
影响范围: Confidentiality Access Control Authorization
技术影响: Gain Privileges
缓解措施
Implementation: Upgrade phone lines. Note this may be prohibitively expensive
Use strong access control such as two factor access control for administrative access to the switch
示例实例
An adversary identifies a vulnerable CCITT-5 phone line, and sends a combination tone to the switch in order to request administrative access. Based on tone and timing parameters the request is verified for access to the switch. Once the adversary has gained control of the switch launching calls, routing calls, and a whole host of opportunities are available.