Archives : April-2012

Heap Buffer Overflow in Skinny Channel Driver

Posted April 23, 2012 by Pavel Espinal & filed under VoIP News Comments: 0.

Tags: asterisk, attacker, buffer overflow, button, Driver, heap, history date, linkedin, matt jordan, open source, Overflow, project security, source

In the Skinny channel driver, KEYPAD_BUTTON_MESSAGE events are queued for processing in a buffer allocated on the heap, where each DTMF value that is received is placed on the end of the buffer. Since the length of the buffer is never checked,..

Read more

Asterisk Manager User Unauthorized Shell Access

Posted April 23, 2012 by Pavel Espinal & filed under VoIP News Comments: 0.

Tags: access nature, asterisk, linkedin, manager interface, Security, shell commands, source, unauthorized shell, User

A user of the Asterisk Manager Interface can bypass a security check and execute shell commands when they lack permission to do so. Under normal conditions, a user should only be able to run shell commands if that user has System class authorizati..

Read more