Penetration Testing mailing list archives

Re: Re: Anonymous access to Voice VLAN using CDP


From: "Mario Platt" <mplatt () gmail com>
Date: Tue, 25 Jul 2006 10:23:21 +0100

Hi,
You can craft CDP packets with yersinia. Hope this is what you are looking for
http://www.yersinia.net/


On 25 Jul 2006 00:27:30 -0000, jpecou () gmail com <jpecou () gmail com> wrote:
It doesnt seem feasible to have completely seperate networks in my opinion. The idea is to implement in a cost effective manner 
and with as little work as possible. I find it odd that data can be trunked through the phone from the pc but in turn the ideal 
solution is to keep them completely seperate. I guess I can understand your point but like I said this is not the way our VoIP 
solution has been implemented. My question was "does anyone know of any source code out there that allows you to spoof a CDP 
packet to allow a machine access to a voice VLAN.?"

------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security?
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's
Choice Award from eWeek. As attacks through web applications continue to rise,
you need to proactively protect your applications from hackers. Cenzic has the
most comprehensive solutions to meet your application security penetration
testing and vulnerability management needs. You have an option to go with a
managed service (Cenzic ClickToSecure) or an enterprise software
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
help you: http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited time we can do a FREE audit for you to confirm your
results from other product. Contact us at request () cenzic com for details.
------------------------------------------------------------------------------



------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security? Why not go with the #1 solution - Cenzic, the only one to win the Analyst's Choice Award from eWeek. As attacks through web applications continue to rise, you need to proactively protect your applications from hackers. Cenzic has the most comprehensive solutions to meet your application security penetration testing and vulnerability management needs. You have an option to go with a managed service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can help you: http://www.cenzic.com/news_events/wpappsec.php And, now for a limited time we can do a FREE audit for you to confirm your results from other product. Contact us at request () cenzic com for details.
------------------------------------------------------------------------------


Current thread: