Asterisk IAX2 Unauthenticated Session Handling Remote Denial of Service Vulnerability

info
discussion
exploit
solution
references

Asterisk IAX2 Unauthenticated Session Handling Remote Denial of Service Vulnerability

Asterisk is prone to a remote denial-of-service vulnerability because it fails to handle remote unauthenticated sessions in a proper manner.

Attackers can exploit this issue by sending authentication requests that will crash the server and deny service to legitimate users.