Está usted visitando una publicación en la hemeroteca de CSIRT-CV.
Para acceder al portal y contenido actual, visite https://www.csirtcv.gva.es
21/03/2011
Les vulnerabilitats descobertes són:
Versions d'Asterisk Open Source anteriors a la 1.6.1.23
Versions d'Asterisk Open Source anteriors a la 1.6.2.17.1
Versions d'Asterisk Open Source anteriors a la 1.8.3.1
None
Solució:Actualitzeu a les versions 1.6.1.23, 1.6.2.17.1 o 1.8.3.1, des de la web d'Asterisk:
http://www.asterisk.org/downloads
O apliqueu els pedaços proporcionats pel fabricant per a les diferents versions:
Versions 1.6.1.X:
http://downloads.asterisk.org/pub/security/AST-2011-003-1.6.1.diff
http://downloads.asterisk.org/pub/security/AST-2011-004-1.6.1.diff
Versions 1.6.2.x:
http://downloads.asterisk.org/pub/security/AST-2011-003-1.6.2.diff
http://downloads.asterisk.org/pub/security/AST-2011-004-1.6.2.diff
Versions 1.8.x:
http://downloads.asterisk.org/pub/security/AST-2011-003-1.8.diff
http://downloads.asterisk.org/pub/security/AST-2011-004-1.8.diff
http://downloads.asterisk.org/pub/security/AST-2011-003.html
http://downloads.asterisk.org/pub/security/AST-2011-004.html
http://www.vupen.com/english/advisories/2011/0686
http://secunia.com/advisories/43722/