Detections
Analytics

FreeBSD : asterisk -- remote heap overwrite vulnerability (1c0def84-5fb1-11db-b2e9-0008c79fa3d2)

high Nessus Plugin ID 22884

Synopsis

The remote FreeBSD host is missing one or more security-related updates.

Description

Adam Boileau of Security-Assessment.com reports :

The Asterisk Skinny channel driver for Cisco SCCP phones (chan_skinny.so) incorrectly validates a length value in the packet header. An integer wrap-around leads to heap overwrite, and arbitrary remote code execution as root.

Solution

Update the affected packages.

See Also

http://www.nessus.org/u?6285b14b

https://marc.info/?l=bugtraq&m=116121567530170

http://www.nessus.org/u?b4e3fd8f

Plugin Details

Severity: High

ID: 22884

File Name: freebsd_pkg_1c0def845fb111dbb2e90008c79fa3d2.nasl

Version: 1.14

Type: local

Published: 10/20/2006

Updated: 1/6/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:asterisk, p-cpe:/a:freebsd:freebsd:asterisk-bristuff, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 10/20/2006

Vulnerability Publication Date: 10/17/2006