Home page logo

fulldisclosure logo Full Disclosure mailing list archives

asterisk remote pre-auth denial of service
From: "Anonymous Person" <anonymousperzon () gmail com>
Date: Sun, 4 Mar 2007 01:24:09 -0600

A very serious remote denial of service  was recently patched in asterisk
some limited information on the problem  can be found here

the bug exists in the asterisk SIP channel driver, anyone using asterisk
running SIP is advised to patch their systems as soon as possible.

i am posting this code to highlight severity of the bug which was fixed in
the asterisk release yesterday without much of a description

Attachment: asterisk-sip-kill.c

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
  • asterisk remote pre-auth denial of service Anonymous Person (Mar 04)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]