Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Asterisk Multiple Denial of Service Vulnerabilities (AST-2011-003/AST-2011-004)

Medium

Synopsis

The remote VoIP server is affected by denial of service vulnerabilities.

Description

The version of Asterisk running on the remote host may be vulnerable to multiple denial of service vulnerabilities :

- A resource exhaustion issue exists in the Asterisk manager interface. (AST-2011-003)

- A NULL pointer dereference issue exists in the TCP/TLS server. (AST-2011-004)

Solution

Upgrade to Asterisk 1.6.1.24, 1.6.2.17.2, 1.8.3.2, or later.