Archive for the ‘0day’ tag
Asterisk: NSFW++
Not surprisingly, Digium has yet to resolve these first two 0days that were released through this site. There is only one reference to the issues on the Digum mailing list.
Please note Tilghman’s response…
“This has already been addressed”
I’m unsure if they are either ignorant to the issue ( a.k.a. Tilghman is ignorant to his own [...]
Suspect: Asterisk Resource Exhaustion
During The Last HOPE an IAX Resource Exhaustion 0day DoS was released for the Asterisk PBX. This 0day was in the wild for 4 days before a patch was released.
During these four days, any attacker could have attacked any publicly accessible Asterisk server and forced it to stop processing all phone calls. What [...]