Tag : Asterisk Project Security Advisory
Asterisk Project Security Advisory – AST-2018-002 ProductAsterisk SummaryCrash when given an invalid SDP media formatdescription Nature of AdvisoryRemote crashSusceptibilityRemote Authenticated Sessions Severity Minor Exploits KnownNo Reported OnJanu..
Asterisk Project Security Advisory – AST-2017-007 ProductAsterisk SummaryRemote Crash Vulerability in res_pjsipNature of AdvisoryDenial of Service SusceptibilityRemote Unauthenticated Sessions Severity ModerateExploits KnownNo Reported OnAugust 30, 2..
Asterisk Project Security Advisory – AST-2017-003 ProductAsterisk SummaryCrash in PJSIP multi-part body parser Nature of AdvisoryRemote CrashSusceptibilityRemote Unauthenticated Sessions Severity CriticalExploits KnownNo Reported On13 April, 2017 Repor..
Asterisk Project Security Advisory – AST-2017-002 ProductAsterisk SummaryBuffer Overrun in PJSIP transaction layer Nature of AdvisoryBuffer Overrun/CrashSusceptibilityRemote Unauthenticated Sessions Severity CriticalExploits KnownNo Reported On12 Apr..
Asterisk Project Security Advisory – AST-2016-005 ProductAsterisk SummaryTCP denial of service in PJProjectNature of AdvisoryCrash/Denial of Service SusceptibilityRemote Unauthenticated Sessions Severity CriticalExploits KnownNo Reported OnFebruary ..
Asterisk Project Security Advisory – AST-2016-004 ProductAsterisk SummaryLong Contact URIs in REGISTER requests can crashAsteriskNature of AdvisoryRemote CrashSusceptibilityRemote Authenticated Sessions Severity Major Exploits KnownNo Reported OnJanu..
Asterisk Project Security Advisory – AST-2016-003 ProductAsterisk SummaryRemote crash vulnerability when receiving UDPTL FAX data. Nature of AdvisoryDenial of Service SusceptibilityRemote Authenticated Sessions Severity Minor Exploits KnownYes Repor..
Asterisk Project Security Advisory – AST-2016-002 ProductAsterisk SummaryFile descriptor exhaustion in chan_sipNature of AdvisoryDenial of Service SusceptibilityRemote Unauthenticated Sessions Severity Minor Exploits KnownYes Reported OnSeptember ..
Asterisk Project Security Advisory – AST-2016-001 ProductAsterisk SummaryBEAST vulnerability in HTTP serverNature of AdvisoryUnauthorized data disclosure due to man-in-the-middle attackSusceptibilityRemote unauthenticated sessions Severity Minor Explo..
Asterisk Project Security Advisory – AST-2015-002 ProductAsterisk SummaryMitigation for libcURL HTTP request injection vulnerability Nature of AdvisoryHTTP request injectionSusceptibilityRemote Authenticated Sessions Severity Major Exploits KnownNo Repor..