|
|
| |
| The Asterisk Skinny channel driver, chan_skinny, has a remotely exploitable crash vulnerability. A segfault can occur when Asterisk receives a "CAPABILITIES_RES_MESSAGE" packet where the capabilities count is greater than the total number of items in the capabilities_res_message array. Note that this requires an authenticated session. |
| |
Credit:
The information has been provided by Security Response Team.
The original article can be found at: http://downloads.digium.com/pub/asa/ASA-2007-019.html
|
| |
Vulnerable Systems:
* Asterisk Open Source 1.4.x - all versions prior to 1.4.10
* AsteriskNOW all versions prior to beta7
* Asterisk Appliance Developer Kit all versions prior to 0.7.0
* s800i (Asterisk Appliance) all versions prior to 1.0.3
Immune Systems:
* Asterisk Open Source 1.4.x - version 1.4.10
* AsteriskNOW beta7
* Asterisk Appliance Developer Kit 0.7.0
* s800i (Asterisk Appliance) 1.0.3
* Asterisk Open Source 1.0.x
* Asterisk Open Source 1.2.x
Resolution:
Asterisk code has been modified to limit the incoming capabilities count.
Users with configured Skinny devices should upgrade to the appropriate version listed in the corrected in section of this advisory.
|
|
|
|
|
|
|
|
