2 matches found
CVE-2014-2288
The CVE-2014-2288 entry concerns the PJSIP channel driver in Asterisk Open Source 12.x prior to 12.1.1. When qualify_frequency is enabled on an AOR and the remote SIP server challenges authentication for the resulting OPTIONS, remote attackers can crash a PJSIP endpoint that has no associated out...
AST-2014-003: Remote Crash Vulnerability in PJSIP channel driver
Asterisk Project Security Advisory - AST-2014-003 Product Asterisk Summary Remote Crash Vulnerability in PJSIP channel driver Nature of Advisory Denial of Service Susceptibility Remote Unauthenticated Sessions Severity Moderate Exploits Known No Reported On January 29, 2014 Reported By Joshua Col...