New Forum system requires email address which you used to apply for your account to replace your original username. Password stays the same.Please see this post for more details
http://forum.yealink.com/forum/showthread.php?tid=40344

Yealink Test Club has been officially launched. Please visit post below to get detail information. Come and join us!
http://forum.yealink.com/forum/announcements.php?aid=18

We just had the YMCS online and we are also working on the features plan on the future versions, in this regard we are need to hear your voice about the YMCS.
Please visit : http://forum.yealink.com/forum/showthread.php?tid=42322


Post Reply 
 
Thread Rating:
  • 0 Votes - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
SECURIY ISSUE: VC400 being brute forced and dont stop calling
Author Message
complex1 Offline
3CX Adv. Cert. Engineer
*****

Posts: 660
Joined: Jan 2014
Reputation: 21
Post: #2
RE: SECURIY ISSUE: VC400 being brute forced and dont stop calling
(01-04-2019 11:53 AM)HenriqueMachado Wrote:  Hello! Henrique from Brazil

Today my VC400 started receiving calls one after the other. When I look who is calling it show like SQL Injection codes:


admin' --
admin' #
admin'/*
' or 1=1--
' or 1=1#
' or 1=1/*
1' or '1' = '1
') or '1'='1--
') or ('1'='1--


What can I do? Is there a way to protect my VC400 from these scanners? Like a password before calling or something like that?

Thanks

Hi Henrique,

May I suggest to do next steps?

- Disconnect the VC400 from your LAN.
- Check your router firewall configuration if the right ports are set.
- Reset VC400 Codec to factory default.
Using tiny objects (for example, the paper clip) to press and hold the reset button for 15 seconds until the screen turns black.
- Change User password into a strong password (>16 char) or disable the user mode
- Change Admin password into a strong password (>16 char)
- Connect the VC400 to your LAN
- (Re)configure the device and check again.

Hope this will help.

Best regards,
Frank.

I'm Dutch, not English. Sorry for my imperfect grammar.
01-04-2019 01:02 PM
Find all posts by this user    like0    dislike0 Quote this message in a reply
Post Reply 


Messages In This Thread
RE: SECURIY ISSUE: VC400 being brute forced and dont stop calling - complex1 - 01-04-2019 01:02 PM

Possibly Related Threads...
Thread: Author Replies: Views: Last Post
  BLF stop to work after undefined time on SIP-T29G econnet 0 323 01-09-2019 11:35 AM
Last Post: econnet
  Dial Now Rule Issue when Transfer IPBX 3 1,763 03-19-2018 04:26 PM
Last Post: IPBX
  T58V Exchange Calendar Sync Issue gyegavian 7 3,021 08-10-2017 01:02 AM
Last Post: Johnson_Yealink
  Software Issue ghassan 4 3,015 04-25-2017 01:21 PM
Last Post: Quinlan_Yealink
  stop MAC config overwriting common config rromano 1 1,645 04-14-2017 10:10 AM
Last Post: Klaus_Yealink
  Where is the "Display CallerID on Calling Phone"? avayax 1 2,230 03-14-2017 08:54 AM
Last Post: Klaus_Yealink
  Placed Calls menu doesn't show dialed number but calling party avayax 3 3,302 12-19-2016 02:34 AM
Last Post: Lucia_Yealink
  Calling numbers with * in it DeepB 6 7,099 10-13-2016 07:32 PM
Last Post: KPatricia
  Broadsoft Issue hancocktel 1 2,093 09-07-2016 05:21 AM
Last Post: Karl_Yealink
  Ability to see the user you are calling is already on the Phone bootmee 4 5,052 08-04-2016 07:27 PM
Last Post: jmoore

Forum Jump:


User(s) browsing this thread: 1 Guest(s)

Contact Us   Yealink   Return to Top   Return to Content   Lite (Archive) Mode   RSS Syndication