[asterisk-users] Important security alert: update your dialplans now!

Sun Feb 14 13:30:45 CST 2010

On Sun, Feb 14, 2010 at 11:22:12AM -0800, Kyle Kienapfel wrote:
> strip_ampersands(${EXTEN})?

You forget other potentially harmful characters.

  &@:,/|

And maybe others.

-- 
               Tzafrir Cohen
icq#16849755              jabber:tzafrir.cohen at xorcom.com
+972-50-7952406           mailto:tzafrir.cohen at xorcom.com
http://www.xorcom.com  iax:guest at local.xorcom.com/tzafrir