This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.
The version of Asterisk installed on the remote host may be affected by
a denial of service vulnerability.
According to the version in its SIP banner, the version of Asterisk
running on the remote host is potentially affected by a denial of
The application does not properly handle an invalid SDP in a SIP request
if such a request defines media descriptions and then defines connection
See also :
Upgrade to Asterisk 220.127.116.11 / 10.12.3 / 11.5.1 / Certified Asterisk
1.8.15-cert3 / 11.2-cert2, or apply the appropriate patch listed in the
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 3.7
Public Exploit Available : false