Asterisk: Asterisk Project Security Advisory

AST-2018-002: Crash When Given An Invalid SDP Media Format Description

Posted February 21, 2018 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: asterisk, Asterisk Project Security Advisory, format description, invalid media format, Kevin Harwell, Product Release, Sandro Gauci

Asterisk Project Security Advisory – AST-2018-002 ProductAsterisk SummaryCrash when given an invalid SDP media formatdescription Nature of AdvisoryRemote crashSusceptibilityRemote Authenticated Sessions Severity Minor Exploits KnownNo Reported OnJanu..

AST-2017-007: Remote Crash Vulerability In Res_pjsip

Posted August 31, 2017 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: Advisory Denial of Service Susceptibility, asterisk, Asterisk Project Security Advisory, George Joseph, Product Release

Asterisk Project Security Advisory – AST-2017-007 ProductAsterisk SummaryRemote Crash Vulerability in res_pjsipNature of AdvisoryDenial of Service SusceptibilityRemote Unauthenticated Sessions Severity ModerateExploits KnownNo Reported OnAugust 30, 2..

AST-2017-003: Crash In PJSIP Multi-part Body Parser

Posted May 19, 2017 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: asterisk, Asterisk Project Security Advisory, Mark Michelson, PJSIP, Product Release, Sandro Gauci

Asterisk Project Security Advisory – AST-2017-003 ProductAsterisk SummaryCrash in PJSIP multi-part body parser Nature of AdvisoryRemote CrashSusceptibilityRemote Unauthenticated Sessions Severity CriticalExploits KnownNo Reported On13 April, 2017 Repor..

AST-2017-002: Buffer Overrun In PJSIP Transaction Layer

Posted May 19, 2017 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: asterisk, Asterisk Project Security Advisory, Mark Michelson, Product Release, Sandro Gauci

Asterisk Project Security Advisory – AST-2017-002 ProductAsterisk SummaryBuffer Overrun in PJSIP transaction layer Nature of AdvisoryBuffer Overrun/CrashSusceptibilityRemote Unauthenticated Sessions Severity CriticalExploits KnownNo Reported On12 Apr..

AST-2016-005: TCP Denial Of Service In PJProject

Posted April 14, 2016 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: asterisk, Asterisk Project Security Advisory, tcp connection, tcp connections, TCP denial of service

Asterisk Project Security Advisory – AST-2016-005 ProductAsterisk SummaryTCP denial of service in PJProjectNature of AdvisoryCrash/Denial of Service SusceptibilityRemote Unauthenticated Sessions Severity CriticalExploits KnownNo Reported OnFebruary ..

AST-2016-004: Long Contact URIs In REGISTER Requests Can Crash Asterisk

Posted April 14, 2016 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: asterisk, Asterisk Project Security Advisory, Mark Michelson, Product Release

Asterisk Project Security Advisory – AST-2016-004 ProductAsterisk SummaryLong Contact URIs in REGISTER requests can crashAsteriskNature of AdvisoryRemote CrashSusceptibilityRemote Authenticated Sessions Severity Major Exploits KnownNo Reported OnJanu..

AST-2016-003: Remote Crash Vulnerability When Receiving UDPTL FAX Data.

Posted February 3, 2016 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: asterisk, Asterisk Project Security Advisory, Richard Mudgett, Walter Dokes

Asterisk Project Security Advisory – AST-2016-003 ProductAsterisk SummaryRemote crash vulnerability when receiving UDPTL FAX data. Nature of AdvisoryDenial of Service SusceptibilityRemote Authenticated Sessions Severity Minor Exploits KnownYes Repor..

AST-2016-002: File Descriptor Exhaustion In Chan_sip

Posted February 3, 2016 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: Alexander Traud, asterisk, Asterisk Project Security Advisory, Richard Mudgett

Asterisk Project Security Advisory – AST-2016-002 ProductAsterisk SummaryFile descriptor exhaustion in chan_sipNature of AdvisoryDenial of Service SusceptibilityRemote Unauthenticated Sessions Severity Minor Exploits KnownYes Reported OnSeptember ..

AST-2016-001: BEAST Vulnerability In HTTP Server

Posted February 3, 2016 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: asterisk, Asterisk Project Security Advisory, default configuration, Joshua Colp, vulnerability

Asterisk Project Security Advisory – AST-2016-001 ProductAsterisk SummaryBEAST vulnerability in HTTP serverNature of AdvisoryUnauthorized data disclosure due to man-in-the-middle attackSusceptibilityRemote unauthenticated sessions Severity Minor Explo..

AST-2015-002: Mitigation For LibcURL HTTP Request Injection Vulnerability

Posted January 28, 2015 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: asterisk, Asterisk Project Security Advisory, Mark Michelson

Asterisk Project Security Advisory – AST-2015-002 ProductAsterisk SummaryMitigation for libcURL HTTP request injection vulnerability Nature of AdvisoryHTTP request injectionSusceptibilityRemote Authenticated Sessions Severity Major Exploits KnownNo Repor..

Tag : Asterisk Project Security Advisory

Recommended

Recent Questions

Categories

FAQs Archive

Posts By Date

Recommended

Recent Questions

Frequent Terms

Categories

FAQs Archive

Posts By Date