SIPDroid Extension Grabber
This module exploits a leak of extension/SIP Gateway on SIPDroid 1.6.1 beta, 2.0.1 beta, 2.2 beta (tested in Android 2.1 and 2.2 - official Motorola release) (other versions may be affected).
Rank
- Normal
Authors
- Anibal Aguiar < anibal.aguiar [at] gmail.com >
Vulnerability References
Development
Similar Modules
- auxiliary/scanner/sip/enumerator
- auxiliary/scanner/sip/enumerator_tcp
- auxiliary/scanner/sip/options
- auxiliary/scanner/sip/options_tcp
Usage Information
$ msfconsole
## ### ## ##
## ## #### ###### #### ##### ##### ## #### ######
####### ## ## ## ## ## ## ## ## ## ## ### ##
####### ###### ## ##### #### ## ## ## ## ## ## ##
## # ## ## ## ## ## ## ##### ## ## ## ## ##
## ## #### ### ##### ##### ## #### #### #### ###
##
msf > use auxiliary/scanner/sip/sipdroid_ext_enum
msf auxiliary(sipdroid_ext_enum) > set RHOST [TARGET IP]
msf auxiliary(sipdroid_ext_enum) > run
## ### ## ##
## ## #### ###### #### ##### ##### ## #### ######
####### ## ## ## ## ## ## ## ## ## ## ### ##
####### ###### ## ##### #### ## ## ## ## ## ## ##
## # ## ## ## ## ## ## ##### ## ## ## ## ##
## ## #### ### ##### ##### ## #### #### #### ###
##
msf > use auxiliary/scanner/sip/sipdroid_ext_enum
msf auxiliary(sipdroid_ext_enum) > set RHOST [TARGET IP]
msf auxiliary(sipdroid_ext_enum) > run
Module Options
| FNLPORT | The final probe port (default: 59159) |
| RHOST | The target address |
| RPORT | Remote port to probe |
| STRTPORT | The start probe port (default: 59150) |
| CHOST | The local client address |
| CPORT | The local client port |
| VERBOSE | Enable detailed status messages |
| WORKSPACE | Specify the workspace for this module |