Asterisk: Manager User Dialplan Permission Escalation

Report
Question

There was an  Asterisk Manager User Dialplan Permission Escalation vulnerability reported by Matt Jordan about Asterisk PBX. This permission escalation bug which made it possible to compromise remote authenticated sessions was considered as a minor severity vulnerability. Protocols such as the Asterisk Manager Interface, which offer external control, are often able to set and get channel variables which allows the execution of dialplan functions. We all know of the power of dialplan functions inside Asterisk. Is that power which allows us to build a plethora of Asterisk based applications. When some functions that are allowed to do more (e.g. execute commands, change…

Asterisk Announces 1.6 years ago 0 Answer

Asterisk VoIP Software 12.0.0-beta2 Now Available!

Report
Question

The Asterisk Development Team is pleased to announce the second beta release of Asterisk 12.0.0. You can immediately download this release at http://downloads.asterisk.org/pub/telephony/asterisk/releases We strongly encourage all interested Asterisk users to participate throughout the testing process. For any issues you might find, please use the issue tracker to report it: https://issues.asterisk.org/jira. We would like you to come to the #asterisk-bugs channel in order to help communicating issues you found. Also, it is also very useful to see successful test reports. You can use the asterisk-dev mailing list for that (http://lists.digium.com). The next major release in the series of our favorite VoIP software will be Asterisk 12,…

Asterisk Announces 1.6 years ago 0 Answer

Asterisk 11.5.0 Now Available

Report
Question

The Asterisk Development Team has announced the release of Asterisk 11.5.0. This release is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk The release of Asterisk 11.5.0 resolves several issues reported by the community and would have not been possible without your participation. Thank you! For a full list of changes in this release, please see the ChangeLog: http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.5.0 Thank you for your continued support of Asterisk!

Asterisk Announces 2 years ago 0 Answer

DAHDI-Linux And DAHDI-Tools 2.7.0 Now Available

Report
Question

The Asterisk Development Team has announced the releases of: DAHDI-Linux-v2.7.0 DAHDI-Tools-v2.7.0 dahdi-linux-complete-2.7.0+2.7.0 This release is available for immediate download at: http://downloads.asterisk.org/pub/telephony/dahdi-linux http://downloads.asterisk.org/pub/telephony/dahdi-tools http://downloads.asterisk.org/pub/telephony/dahdi-linux-complete In this release: * Driving closer towards sysfs configuration of dahdi devices * Experimental support to "pin" [1] specific span and channel numbers to specific device/local spans * New wcte13xp base driver [1] http://git.asterisk.org/gitweb/?p=dahdi/tools.git;a=commit;h=3d1fd71af2221b3f3e21274ba800619feec439e1 For a full list of changes in these releases, please see the shortlog at: http://git.asterisk.org/gitweb/?p=dahdi/linux.git;a=shortlog;h=refs/tags/v2.7.0-rc1 http://git.asterisk.org/gitweb/?p=dahdi/tools.git;a=shortlog;h=refs/tags/v2.7.0-rc1 Issues found in this release can be reported in the DAHDI-Linux [1] and DAHDI-Tools [2] projects at https://issues.asterisk.org/jira [1]

Asterisk Announces 2.1 years ago 0 Answer

Asterisk 11.4.0 Now Available

Report
Question

The Asterisk Development Team has announced the release of Asterisk 11.4.0. This release is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk The release of Asterisk 11.4.0 resolves several issues reported by the community and would have not been possible without your participation. Thank you! For a full list of changes in this release, please see the ChangeLog: http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.4.0 Thank you for your continued support of Asterisk!

Asterisk Announces 2.2 years ago 0 Answer