ICE allows VoIP units to determine peer-to-peer connections utilizing the shortest obtainable community path. The characteristic just isn’t enabled by default on HP Poly units, and the corporate advises directors to disable it if it’s not wanted.
The flaw, rated 9.2 on the CVSS severity scale, impacts all telephones from the HP Poly VVX collection, in addition to the Trio 8300, 8500, and 8800 IP convention units. HP has mounted the flaw in its Poly Unified Communications Software program (UCS) variations 6.4.8 for the VVX units, 8.1.7 for the Trio 8300, and seven.2.8 for Trio 8500 and 8800.
VoIP exploit is public for pen testing
An exploit module concentrating on this vulnerability has already been developed and launched for the broadly used Metasploit penetration testing framework that’s maintained by Rapid7.
The exploit executes code as root on an affected gadget with ICE enabled by sending a SIP INVITE request with a specifically crafted candidate attribute. This attribute usually accommodates a transport handle that can be utilized for connectivity checks and is a part of the ICE RFC8839 commonplace.
