Asterisk HTTP Server BEAST Vulnerability

• Email
• Facebook
• 
  Twitter
• Google+
• Linkedin

  Severity: CRITICAL

---

  DESCRIPTION

The Asterisk HTTP server currently has a default configuration which allows the BEAST vulnerability to be exploited if the TLS functionality is enabled. This can allow a man-in-the-middle attack to decrypt data passing through it.

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1006025