Online Media

VoIP Forum

Hans Petter Selasky alerted the Asterisk developer community about a potential harmful pattern in Asterisk dialplans on February 9th.  His example is as follows:

[from_sip]
exten => _X.,1,Dial(SIP/${EXTEN}@testsip)

He writes: “And if ${EXTEN} = “000@testsip&SIP/333” what turns out to happen then is similar to SQL injection :-(  ”He is exactly right. Many VoIP protocols, including IAX2 and SIP, has a very large allowed character set in the dialed extension, a character set that allows characters that are used as separators to the dial() and the queue() applications, as well as within the dialstring that these applications send to the channel drivers in Asterisk. A user can change the dial options and dial something we should not be able to dial in your system. This article describes the issue in more detail and gives you some help on how to avoid this causing trouble in your Asterisk server. (more…)

© Edvina AB, Sollentuna, Sweden 2010 VoIP-Forum. All Rights Reserved.

.
Source: VoIP Forum
More about: Asterisk , 1.8 , LTS
If you found this article interesting, please consider subscribing to our RSS feed, or becoming a member of biz-news to have future articles delivered to your feed reader or mailbox
oej
Advertise with us and reach to an audience of thousands of High Tech professionals
Comments
Your Name *
Your Email *
Your email will not be disclosed anywhere
Antispam Control


Latest News
All sections | Sections | All articles | News | RSS news feed