Detections
Analytics

FreeBSD : PJSIP -- TCP denial of service in PJProject (e21474c6-031a-11e6-aa86-001999f8d30b)

high Nessus Plugin ID 90555

Language:

Synopsis

The remote FreeBSD host is missing one or more security-related updates.

Description

The Asterisk project reports :

PJProject has a limit on the number of TCP connections that it can accept. Furthermore, PJProject does not close TCP connections it accepts. By default, this value is approximately 60.

An attacker can deplete the number of allowed TCP connections by opening TCP connections and sending no data to Asterisk.

If PJProject has been compiled in debug mode, then once the number of allowed TCP connections has been depleted, the next attempted TCP connection to Asterisk will crash due to an assertion in PJProject.

If PJProject has not been compiled in debug mode, then any further TCP connection attempts will be rejected. This makes Asterisk unable to process TCP SIP traffic.

Note that this only affects TCP/TLS, since UDP is connectionless.

Solution

Update the affected packages.

See Also

http://downloads.asterisk.org/pub/security/AST-2016-005.html

http://www.nessus.org/u?3e52fa09

Plugin Details

Severity: High

ID: 90555

File Name: freebsd_pkg_e21474c6031a11e6aa86001999f8d30b.nasl

Version: 2.3

Type: local

Published: 4/18/2016

Updated: 1/4/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:pjsip, p-cpe:/a:freebsd:freebsd:pjsip-extsrtp, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 4/15/2016

Vulnerability Publication Date: 2/15/2016