[Asterisk-Security] Multiple Vulnerabilities in Asterisk 1.2.10
(Fixed in 1.2.11)
Kevin P. Fleming
kpfleming at digium.com
Sun Aug 27 07:04:45 MST 2006
----- Duane <duane at e164.org> wrote:
> But at the same time asterisk could use a built in sanity checker to
> escape various characters etc... ie protecting people from
> themselves...
And anyone who wants to provide one is welcome to do so. The lack of one being available is not a vulnerability, though, since the administrator can easily avoid the issue.
--
Kevin P. Fleming
Senior Software Engineer
Digium, Inc.
More information about the Asterisk-Security
mailing list