Asterisk Project Security Advisory – AST-2017-003 ProductAsterisk SummaryCrash in PJSIP multi-part body parser Nature of AdvisoryRemote CrashSusceptibilityRemote Unauthenticated Sessions Severity CriticalExploits KnownNo Reported On13 April, 2017 Repor..
Author : Asterisk Security
Home » Articles posted by Asterisk Security (paged 2)
Asterisk Project Security Advisory – AST-2017-002 ProductAsterisk SummaryBuffer Overrun in PJSIP transaction layer Nature of AdvisoryBuffer Overrun/CrashSusceptibilityRemote Unauthenticated Sessions Severity CriticalExploits KnownNo Reported On12 Apr..
Asterisk Project Security Advisory – ASTERISK-2016-009 ProductAsterisk SummaryNature of AdvisoryAuthentication Bypass SusceptibilityRemote unauthenticated sessions Severity Minor Exploits KnownNo Reported OnOctober 3, 2016 Reported ByWalter Doekes Pos..
On September 8, the Asterisk development team released the AST-2016-007security advisory. The security advisory involved an RTP resource exhaustion that could be targeted due to a flaw in the allowoverlapoption of chan_sip. Due to new information presen..
Asterisk Project Security Advisory – AST-2016-006 ProductAsterisk SummaryCrash on ACK from unknown endpointNature of AdvisoryRemote CrashSusceptibilityRemote unauthenticated sessions Severity CriticalExploits KnownNo Reported OnAugust 3, 2016 Repor..
Asterisk Project Security Advisory – AST-2016-005 ProductAsterisk SummaryTCP denial of service in PJProjectNature of AdvisoryCrash/Denial of Service SusceptibilityRemote Unauthenticated Sessions Severity CriticalExploits KnownNo Reported OnFebruary ..
Asterisk Project Security Advisory – AST-2016-004 ProductAsterisk SummaryLong Contact URIs in REGISTER requests can crashAsteriskNature of AdvisoryRemote CrashSusceptibilityRemote Authenticated Sessions Severity Major Exploits KnownNo Reported OnJanu..
Asterisk Project Security Advisory – AST-2016-003 ProductAsterisk SummaryRemote crash vulnerability when receiving UDPTL FAX data. Nature of AdvisoryDenial of Service SusceptibilityRemote Authenticated Sessions Severity Minor Exploits KnownYes Repor..
Asterisk Project Security Advisory – AST-2016-002 ProductAsterisk SummaryFile descriptor exhaustion in chan_sipNature of AdvisoryDenial of Service SusceptibilityRemote Unauthenticated Sessions Severity Minor Exploits KnownYes Reported OnSeptember ..
Asterisk Project Security Advisory – AST-2016-001 ProductAsterisk SummaryBEAST vulnerability in HTTP serverNature of AdvisoryUnauthorized data disclosure due to man-in-the-middle attackSusceptibilityRemote unauthenticated sessions Severity Minor Explo..