Asterisk SIP Channel Driver 'scanf' Multiple Remote Denial of Service Vulnerabilities

Asterisk is prone to multiple remote denial-of-service vulnerabilities.

Successful exploits can crash the SIP channel driver, resulting in denial-of-service conditions for legitimate users.

The issues affect the Asterisk 1.6.1.

NOTE: Other versions may also include the affected code but may not be exploitable because they do not allow SIP packets to exceed 1500 bytes total.


 

Privacy Statement
Copyright 2010, SecurityFocus