Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
SecuriTeam™  Beyond Security®  SecuriTeam™ Home  Ask the Team  Mailing Lists  Advertising Info  Blogs SecuriTeam™ in Your Inbox   E-mail this CVE-2011-1507 to a friend New vulnerability? New tool? Tell us	CVE-2011-1507 Asterisk Manager File Descriptor Resource Exhaustion Vulnerability     Credit: The information has been provided by Matthew Nicholson. The original article can be found at: http://downloads.asterisk.org/pub/security/AST-2011-005.html Website Security Scan Code Vulnerability Test Network Assessment Tool Detect hidden vulnerabilities Exhaustive automated testing Real-time, continuous security Get guidance from professionals of internal or 3rd party code. scanning for your entire network    CVE-2011-1507 Details Check for CVE-2011-1507 Vulnerability Assessment and Management. Automated Pen Testing for 50 to 50,000 nodes beyondsecurity.com/vulnerability-scanner Vulnerable Systems:  * Asterisk Open Source 1.4.x All versions  * Asterisk Open Source 1.6.1.x All versions  * Asterisk Open Source 1.6.2.x All versions  * Asterisk Open Source 1.8.x All versions  * Asterisk Business Edition C.x.x All versions On systems that have the Asterisk Manager Interface, Skinny, SIP over TCP, or the built in HTTP server enabled, it is possible for an attacker to open as many connections to asterisk as he wishes. This will cause Asterisk to run out of available file descriptors and stop processing any new calls. Additionally, disk space can be exhausted as Asterisk logs failures to open new file descriptors. Patch Availability: http://downloads.asterisk.org/pub/security/AST-2011-005-1.4.diff Version 1.4 http://downloads.asterisk.org/pub/security/AST-2011-005-1.6.1.diff Version 1.6.1 http://downloads.asterisk.org/pub/security/AST-2011-005-1.6.2.diff Version 1.6.2 http://downloads.asterisk.org/pub/security/AST-2011-005-1.8.diff Version 1.8 Workaround: Asterisk can now limit the number of unauthenticated connections to each vulnerable interface and can also limit the time unauthenticated clients will remain connected for some interfaces. This will prevent vulnerable interfaces from using up all available file descriptors. Care should be taken when setting the connection limits so that the combined total of allowed unauthenticated sessions from each service is not more than the file descriptor limit for the Asterisk process. The file descriptor limit can be checked (and set) using the 'ulimit -n' command for the process' limit and the '/proc/sys/fs/file-max' file (on Linux) for the system's limit. It will still be possible for an attacker to deny service to each of the vulnerable services individually. To mitigate this risk, vulnerable services should be run behind a firewall that can detect and prevent DoS attacks. In addition to using a firewall to filter traffic, vulnerable systems can be protected by disabling the vulnerable services in their respective configuration files. CVE Information: CVE-2011-1507 Disclosure Timeline: 04/21/11 Initial version  Comments on CVE-2011-1507:  Add new comment:  Subject:  Name/Nick/Email:          Chars Left:	All Sections Security News Unix focus Exploits Tools Windows focus Security Reviews
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

Copyright © 1998-2010 Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®