what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 2 of 2

Files from Alexander Traud

Asterisk Project Security Advisory - AST-2021-003

Posted Feb 19, 2021

Authored by Alexander Traud, gjoseph | Site asterisk.org

An unauthenticated remote attacker could replay SRTP packets which could cause an Asterisk instance configured without strict RTP validation to tear down calls prematurely.

tags | advisory, remote

advisories | CVE-2021-26712

SHA-256 | c6b2cb980ac1c471ada712a10083d5e4a2f109aa8638a11055f9f18afbbc09ab

Download | Favorite | View

Asterisk Project Security Advisory - AST-2016-002

Posted Feb 6, 2016

Authored by Richard Mudgett, Alexander Traud | Site asterisk.org

Asterisk Project Security Advisory - Setting the sip.conf timert1 value to a value higher than 1245 can cause an integer overflow and result in large retransmit timeout times. These large timeout values hold system file descriptors hostage and can cause the system to run out of file descriptors.

tags | advisory, overflow

SHA-256 | c3a9d55b8722a6698270f1449a33fc8ad65f440df0576b6607a8cd998bdbc47e

Download | Favorite | View