Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

asterisk remote pre-auth denial of service
From: "Anonymous Person" <anonymousperzon () gmail com>
Date: Sun, 4 Mar 2007 01:24:09 -0600

A very serious remote denial of service  was recently patched in asterisk
some limited information on the problem  can be found here
http://asterisk.org/taxonomy/term/32

the bug exists in the asterisk SIP channel driver, anyone using asterisk
running SIP is advised to patch their systems as soon as possible.

i am posting this code to highlight severity of the bug which was fixed in
the asterisk release yesterday without much of a description

Attachment: asterisk-sip-kill.c
Description:

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
  • asterisk remote pre-auth denial of service Anonymous Person (Mar 04)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault