3 matches found
Asterisk SIP通道驱动远程拒绝服务漏洞
CVECAN ID: CVE-2008-2119 Asterisk是开放源码的软件PBX,支持各种VoIP协议和设备。 Asterisk在以pedantic模式处理SIP时,Asterisk将From头的值传送给了asturidecode函数进行解码。由于没有检查From值是否为空,因此上述情况可能导致例程崩溃。 Asterisk Asterisk 1.2.x Asterisk Asterisk 1.0.x Asterisk Business Edition B.x.x Asterisk Business Edition A.x.x Asterisk --------...
Null pointer dereference
Asterisk Open Source 1.0.x and 1.2.x before 1.2.29 and Business Edition A.x.x and B.x.x before B.2.5.3, when pedantic parsing aka pedanticsipchecking is enabled, allows remote attackers to cause a denial of service daemon crash via a SIP INVITE message that lacks a From header, related to...
CVE-2008-2119
Asterisk Open Source 1.0.x and 1.2.x before 1.2.29 and Business Edition A.x.x and B.x.x before B.2.5.3, when pedantic parsing aka pedanticsipchecking is enabled, allows remote attackers to cause a denial of service daemon crash via a SIP INVITE message that lacks a From header, related to...