AsteriskNOW Vulnerabilities


The following list includes some of the most critical AsteriskNOW vulnerabilities known to the security community. In any case you find that there is anything missing in this list, please let us know and we will update it as soon as possible.
  1. Asterisk IAX \POKE\ Resource Exhaustion
  2. IAX2 Incomplete 3-Way Handshake (Spoofing)
  3. RTP Codec Payload Handling Two Buffer Overflows
  4. Asterisk SIP Channel Driver Unauthenticated Calls
  5. SIP Channel Driver BYE Vulnerability
  6. Resource Exhaustion Vulnerability in Asterisk SIP Channel Driver
  7. Skinny Channel Driver DoS
  8. IAX2 Channel Driver Resource Exhaustion Vulnerability
  9. Stack Buffer Overflow in Asterisk\s IAX2 Channel Driver
  10. Remote Crash Vulnerability in Asterisk\s IAX2 Channel Driver
  11. Remote Crash Vulnerability in Asterisk\s Skinny Channel Driver
  12. Remote Crash Vulnerability in Asterisk\s STUN Implementation
  13. Multiple Unauthenticated Stack Overflows in Asterisk Chan_sip.c (STP)
  14. IAX2 Users can Cause Unauthorized Data Disclosure