Multiple Asterisk Products 'PJSIP Transaction Layer' Heap Based Buffer Overflow Vulnerability

Bugtraq ID: 98572
Class: Boundary Condition Error
CVE: CVE-2017-9372
Remote: Yes
Local: No
Published: Apr 12 2017 12:00AM
Updated: Jun 02 2017 05:01PM
Credit: Sandro Gauci
Vulnerable: Asterisk Certified Asterisk 13.13-cert3
Asterisk Certified Asterisk 13.13
Asterisk Asterisk Open Source 13.7.1
Asterisk Asterisk Open Source 13.3.2
Asterisk Asterisk Open Source 13.0.1
Asterisk Asterisk Open Source 14.0
Asterisk Asterisk Open Source 13.8.1
Asterisk Asterisk Open Source 13.1.1
Asterisk Asterisk Open Source 13.0.2
Asterisk Asterisk Open Source 13.0
Not Vulnerable: Asterisk Certified Asterisk 13.13-cert4
Asterisk Asterisk Open Source 14.4.1
Asterisk Asterisk Open Source 13.15.1


 

Privacy Statement
Copyright 2010, SecurityFocus