CVE-2014-8416
CVE-2014-8416 is a use-after-free vulnerability in Asterisk’s PJSIP channel driver (res_pjsip_refer). The issue allows a remote attacker to crash the application via an in-dialog INVITE with a Replaces message, causing the channel to hang up. Affected products/versions stated: Asterisk Open Sourc...