This post explains the issue: http://nerdvittles.com/index.php?p=171
-Adam On 3/10/07, Aloysius Thevarajah Lloyd <[EMAIL PROTECTED]> wrote:
hi, this is interesting. I see the 1.2.16 fix on the * site. can u explain how can crash * < 1.2.16? Thanks LLoyd On 3/9/07, Ian Darwin <[EMAIL PROTECTED]> wrote: > In case anybody didn't notice, there is a significant denial-of-service > attack that is fixed in 1.2.16. Basically, if you run SIP and can be > reached from the Internet, your * server can be crashed in under a > second by any script kiddy, anywhere in the world. There is an exploit > available and I tested it on my backup * server, which crashed before I > got my finger off the return key. > > In other words, please upgrade ASAP. > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > >
