Asterisk 'ast_parse_digest()' Stack Buffer Overflow Vulnerability

Asterisk is prone to a remote stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user supplied data.

An attacker may exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.

Asterisk 1.8.10.0, 1.8.11.0, 10.2.0, and 10.3.0 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus