|
Family: Debian Local Security Checks --> Category: infos
[DSA1229] DSA-1229-1 asterisk Vulnerability Scan
Vulnerability Scan Summary DSA-1229-1 asterisk
Detailed Explanation for this Vulnerability Test
Adam Boileau discovered an integer overflow in the Skinny channel
driver in Asterisk, an Open Source Private Branch Exchange or
telephone system, as used by Cisco SCCP phones, which allows remote
attackers to execute arbitrary code.
For the stable distribution (sarge) this problem has been fixed in
version 1.0.7.dfsg.1-2sarge4.
For the unstable distribution (sid) this problem has been fixed in
version 1.2.13~dfsg-1.
We recommend that you upgrade your asterisk packages.
Solution : http://www.debian.org/security/2006/dsa-1229
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|