[Bug 956581] [NEW] Stack Buffer Overflow in HTTP Manager
Launchpad Bug Tracker
956581 at bugs.launchpad.net
Fri Mar 16 02:16:25 UTC 2012
*** This bug is a security vulnerability ***
You have been subscribed to a private security bug by Paul Belanger (pabelanger):
An attacker attempting to connect to an HTTP session of the Asterisk
Manager Interface can send an arbitrarily long string value for HTTP
Digest Authentication. This causes a stack buffer overflow, with the
possibility of remote code injection.
http://downloads.asterisk.org/pub/security/AST-2012-003.html
** Affects: asterisk (Ubuntu)
Importance: Undecided
Assignee: Paul Belanger (pabelanger)
Status: Confirmed
--
Stack Buffer Overflow in HTTP Manager
https://bugs.launchpad.net/bugs/956581
You received this bug notification because you are a member of Ubuntu Sponsors Team, which is subscribed to the bug report.
More information about the Ubuntu-sponsors
mailing list