Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:3225
HistoryApr 25, 2008 - 12:00 a.m.

Asterisk IAX2报文放大远程拒绝服务漏洞

2008-04-2500:00:00
Root
www.seebug.org
15

0.937 High

EPSS

Percentile

98.9%

JSON

BUGTRAQ ID: 28901
CVE(CAN) ID: CVE-2008-1897

Asterisk是开放源码的软件PBX,支持各种VoIP协议和设备。

Asterisk在处理呼叫的机制上存在漏洞,远程攻击者可能利用此漏洞对第三方机器执行拒绝服务攻击。

IAX2协议允许IC_NEW报文启动呼叫。IC_NEW报文是18字节长的UDP报文,而呼叫可能非常长,包含有很多数据。由于UDP是可以伪造的,因此远程攻击者可以在IAX2握手期间欺骗IAX2握手,导致Asterisk服务器向目标发送大量数据,造成网络堵塞。

Asterisk Asterisk 1.4.x
Asterisk Asterisk 1.2.x
Asterisk Asterisk 1.0.x
Asterisk Business Edition C.x.x
Asterisk Business Edition B.x.x
Asterisk Business Edition A.x.x
Asterisk AsteriskNOW 1.0.x
Asterisk Appliance Developer Kit 0.x.x
Asterisk s800i 1.0.x

临时解决方法:

  • 禁止远程未经认证的IAX2会话。

厂商补丁:

Asterisk

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

<a href=“http://www.asterisk.org/” target=“_blank”>http://www.asterisk.org/</a>


                                                https://www.altsci.com/concepts/altsci_iax2-0.7.tgz&nbsp;
https://www.altsci.com/concepts/altsci_iax2-0.6.tgz

Related

openvas 8
fedora 2
osv 1
securityvulns 2
debian 1
checkpoint_advisories 1
nessus 6
debiancve 1
ubuntucve 2
prion 1
cve 1
gentoo 1
openvas
openvas
Fedora Update for asterisk FEDORA-2008-3365
2009-02-17 00:00:00
Fedora Update for asterisk FEDORA-2008-3390
2009-02-17 00:00:00
Debian: Security Advisory (DSA-1563-1)
2008-05-12 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: asterisk-1.4.19.1-1.fc8
2008-04-29 20:58:47
[SECURITY] Fedora 7 Update: asterisk-1.4.19.1-1.fc7
2008-04-29 20:56:43
osv
osv
asterisk - denial of service
2008-04-30 00:00:00
securityvulns
securityvulns
AST-2008-006 - 3-way handshake in IAX2 incomplete
2008-04-24 00:00:00
Asterisk IAX2 calls spoofing
2008-04-24 00:00:00
debian
debian
[SECURITY] [DSA 1563-1] New asterisk packages fix denial of service
2008-04-30 17:41:24
checkpoint_advisories
checkpoint_advisories
Digium Asterisk Multiple Products IAX2 Handshake Denial of Service (CVE-2008-1897)
2010-07-19 00:00:00
nessus
nessus
Debian DSA-1563-1 : asterisk - programming error
2008-05-02 00:00:00
Fedora 8 : asterisk-1.4.19.1-1.fc8 (2008-3390)
2008-05-01 00:00:00
Fedora 7 : asterisk-1.4.19.1-1.fc7 (2008-3365)
2008-05-01 00:00:00
debiancve
debiancve
CVE-2008-1897
2008-04-23 16:05:00
ubuntucve
ubuntucve
CVE-2008-1897
2008-04-23 00:00:00
CVE-2008-1923
2008-04-23 00:00:00
prion
prion
Code injection
2008-04-23 16:05:00
cve
cve
CVE-2008-1897
2008-04-23 16:05:00
gentoo
gentoo
Asterisk: Multiple vulnerabilities
2009-05-02 00:00:00

0.937 High

EPSS

Percentile

98.9%

JSON
Related for SSV:3225
openvas8fedora2osv1securityvulns2debian1checkpoint_advisories1nessus6debiancve1ubuntucve2prion1cve1gentoo1