CVE-2011-2216
reqrespparser.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.4.2 does not initialize certain strings, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a malformed Contact header...