CVE-2019-15297

MEDIUM

Description

res_pjsip_t38 in Sangoma Asterisk 13.21-cert4, 15.7.3, and 16.5.0 allows an attacker to trigger a crash by sending a declined stream in a response to a T.38 re-invite initiated by Asterisk.

References

http://downloads.asterisk.org/pub/security/AST-2019-004.html

http://packetstormsecurity.com/files/154371/Asterisk-Project-Security-Advisory-AST-2019-004.html

http://packetstormsecurity.com/files/161671/Asterisk-Project-Security-Advisory-AST-2021-006.html

http://seclists.org/fulldisclosure/2021/Mar/5

Details

Source: MITRE

Published: 2019-09-09

Updated: 2021-03-05

Type: CWE-476

Risk Information

CVSS v2.0

Base Score: 4

Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 8

Severity: MEDIUM

CVSS v3.0

Base Score: 6.5

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 2.8

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:digium:asterisk:*:*:*:*:*:*:*:* versions from 15.0.0 to 15.7.3 (inclusive)

cpe:2.3:a:digium:asterisk:*:*:*:*:*:*:*:* versions from 16.0.0 to 16.5.0 (inclusive)

Tenable Plugins

View all (2 total)

IDNameProductFamilySeverity
147148FreeBSD : asterisk -- Crash when negotiating T.38 with a zero port (9e8f0766-7d21-11eb-a2be-001999f8d30b)NessusFreeBSD Local Security Checks
medium
128589FreeBSD : asterisk -- Crash when negotiating for T.38 with a declined stream (d94c08d2-d079-11e9-8f1a-001999f8d30b)NessusFreeBSD Local Security Checks
medium