FreeBSD : asterisk -- denial of service vulnerability, local system access (8b683bea-d49c-11da-a672-000e0c2e438a)
Medium Nessus Plugin ID 21468
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionEmmanouel Kellenis reports a denial of service vulnerability within asterisk. The vulnerability is caused by a buffer overflow in 'format_jpeg.c'. A large JPEG image could trigger this bug, potentially allowing a local attacker to execute arbitrary code.
SolutionUpdate the affected package.