Skip to main content

Asterisk Skinny Channel Driver Vulnerability

Last Update Date: 15 Jun 2012 17:07 Release Date: 15 Jun 2012 4148 Views

RISK: Medium Risk

TYPE: Servers - Other Servers

TYPE: Other Servers

A vulnerability has been identified in Asterisk. A remote authenticated user can cause denial of service conditions.

A remote authenticated user with a valid SCCP ID can close a connection to the target Asterisk server when a station is in the 'Off Hook' call state to cause the target server to crash.


Impact

  • Denial of Service

System / Technologies affected

  • Asterisk version 10.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to a version 10.5.1

Vulnerability Identifier


Source


Related Link