Asterisk Multiple Remote Vulnerabilities

Asterisk Multiple Remote Vulnerabilities

Solution:
The vendor has released version 1.2.11 to address the buffer-overflow issue.

For the format-string and directory-traversal issues, the vendor has suggested a workaround and will further address these issues in a future version.

Please see the references for more information.

Asterisk Asterisk 1.0

Asterisk asterisk-1.2.11-patch.gz
http://ftp.digium.com/pub/asterisk/asterisk-1.2.11-patch.gz

Asterisk Asterisk 1.0.10

Asterisk asterisk-1.2.11-patch.gz
http://ftp.digium.com/pub/asterisk/asterisk-1.2.11-patch.gz

Asterisk Asterisk 1.0.7

Asterisk asterisk-1.2.11-patch.gz
http://ftp.digium.com/pub/asterisk/asterisk-1.2.11-patch.gz

Asterisk Asterisk 1.0.8

Asterisk asterisk-1.2.11-patch.gz
http://ftp.digium.com/pub/asterisk/asterisk-1.2.11-patch.gz

Asterisk Asterisk 1.0.9

Asterisk asterisk-1.2.11-patch.gz
http://ftp.digium.com/pub/asterisk/asterisk-1.2.11-patch.gz

Asterisk Asterisk 1.2 .0-beta2

Asterisk asterisk-1.2.11-patch.gz
http://ftp.digium.com/pub/asterisk/asterisk-1.2.11-patch.gz

Asterisk Asterisk 1.2.6

Asterisk asterisk-1.2.11-patch.gz
http://ftp.digium.com/pub/asterisk/asterisk-1.2.11-patch.gz

Asterisk Asterisk 1.2.7

Asterisk asterisk-1.2.11-patch.gz
http://ftp.digium.com/pub/asterisk/asterisk-1.2.11-patch.gz

Asterisk Asterisk 1.2.8

Asterisk asterisk-1.2.11-patch.gz
http://ftp.digium.com/pub/asterisk/asterisk-1.2.11-patch.gz

Asterisk Asterisk 1.2.9

Asterisk asterisk-1.2.11-patch.gz
http://ftp.digium.com/pub/asterisk/asterisk-1.2.11-patch.gz