Displaying 1 result from an estimated 1 matches for "fwdownl".
Did you mean:
downl
2008 Jul 22
0
AST-2008-011: Traffic amplification in IAX2 firmware provisioning system
...--+
| Description | An attacker may request an Asterisk server to send part |
| | of a firmware image. However, as this firmware download |
| | protocol does not initiate a handshake, the source |
| | address may be spoofed. Therefore, an IAX2 FWDOWNL |
| | request for a firmware file may consume as little as 40 |
| | bytes, yet produces a 1040 byte response. Coupled with |
| | multiple geographically diverse Asterisk servers, an |
| | attacker may flood an victim site with...