Asterisk Appliance Vulnerabilities


The following list includes some of the most critical Asterisk Appliance vulnerabilities known to the security community. In any case you find that there is anything missing in this list, please let us know and we will update it as soon as possible.
  1. Asterisk IAX2 Call Number Resource Exhaustion
  2. Asterisk SIP Responses Expose Valid Usernames
  3. Asterisk IAX \POKE\ Resource Exhaustion
  4. IAX2 Incomplete 3-Way Handshake (Spoofing)
  5. RTP Codec Payload Handling Two Buffer Overflows
  6. Asterisk SIP Channel Driver Unauthenticated Calls
  7. SIP Channel Driver BYE Vulnerability
  8. Resource Exhaustion Vulnerability in Asterisk SIP Channel Driver
  9. Skinny Channel Driver DoS
  10. IAX2 Channel Driver Resource Exhaustion Vulnerability
  11. Stack Buffer Overflow in Asterisk\s IAX2 Channel Driver
  12. Remote Crash Vulnerability in Asterisk\s IAX2 Channel Driver
  13. Remote Crash Vulnerability in Asterisk\s Skinny Channel Driver
  14. Remote Crash Vulnerability in Asterisk\s STUN Implementation
  15. Multiple Unauthenticated Stack Overflows in Asterisk Chan_sip.c (STP)
  16. IAX2 Users can Cause Unauthorized Data Disclosure