Dai, TianxiangTianxiangDaiShulman, HayaHayaShulmanWaidner, MichaelMichaelWaidner2022-03-152022-03-152021https://publica.fraunhofer.de/handle/publica/41264010.1109/ICDCS51616.2021.00117The proliferation of Voice-over-IP (VoIP) technologies make them a lucrative target of attacks. While many attack vectors have been uncovered, one critical vector has not yet received attention: hijacking telephony via DNS cache poisoning. We demonstrate practical VoIP hijack attacks by manipulating DNS responses with a weak off-path attacker. We evaluate our attacks against popular telephony VoIP systems in the Internet and provide a live demo of the attack against Extensible Messaging and Presence Protocol at https://sit4.me/M4.en004005conference paper