FreeBSD : asterisk -- Buffer overflow in CDR's set user (356b02e9-1954-11e7-9608-001999f8d30b)
High Nessus Plugin ID 99192
The remote FreeBSD host is missing a security-related update.
The Asterisk project reports : No size checking is done when setting the user field on a CDR. Thus, it is possible for someone to use an arbitrarily large string and write past the end of the user field storage buffer. This allows the possibility of remote code injection.