CVE-2017-17850

HIGH
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

An issue was discovered in Asterisk 13.18.4 and older, 14.7.4 and older, 15.1.4 and older, and 13.18-cert1 and older. A select set of SIP messages create a dialog in Asterisk. Those SIP messages must contain a contact header. For those messages, if the header was not present and the PJSIP channel driver was used, Asterisk would crash. The severity of this vulnerability is somewhat mitigated if authentication is enabled. If authentication is enabled, a user would have to first be authorized before reaching the crash point.

References

http://downloads.asterisk.org/pub/security/AST-2017-014.html

http://www.securitytracker.com/id/1040056

https://issues.asterisk.org/jira/browse/ASTERISK-27480

https://security.gentoo.org/glsa/201811-11

Details

Source: MITRE

Published: 2017-12-27

Updated: 2018-11-25

Type: CWE-20

Risk Information

CVSS v2

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 3.9

Severity: HIGH

Tenable Plugins

View all (4 total)

IDNameProductFamilySeverity
119131GLSA-201811-11 : Asterisk: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
105861Fedora 27 : asterisk (2017-41242dfe10)NessusFedora Local Security Checks
high
105545Asterisk 13.x < 13.18.5 / 14.x < 14.7.5 / 15.x < 15.1.5 / 13.13 < 13.18-cert2 Crash in PJSIP (AST-2017-014)NessusMisc.
high
105448FreeBSD : asterisk -- Crash in PJSIP resource when missing a contact header (2a3bc6ac-e7c6-11e7-a90b-001999f8d30b)NessusFreeBSD Local Security Checks
high