This script is Copyright (C) 2011-2014 Tenable Network Security, Inc.
The version of Asterisk installed on the remote host may be affected
by an information disclosure vulnerability.
According to the version in its SIP banner, the version of Asterisk
running on the remote host allows a remote attacker to enumerate valid
users by sending malformed SIP INVITE and REGISTER requests.
See also :
Update to Asterisk 126.96.36.199 / 188.8.131.52.2 / 184.108.40.206 / C.3.7.3 or
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.8
Public Exploit Available : true