CVE-2007-1594 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-1594
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-1594

Description: The handle_response function in chan_sip.c in Asterisk before 1.2.17 and 1.4.x before 1.4.2 allows remote attackers to cause a denial of service (crash) via a SIP Response code 0 in a SIP packet.

CVE Status: Candidate

References: SUSE http://www.novell.com/linux/security/advisories/2007_34_asterisk.html ST 1017809 SAID Secunia Advisory: SA24579 Secunia Advisory: SA24719 Secunia Advisory: SA25582 MLIST http://voipsa.org/pipermail/voipsec_voipsa.org/2007-March/002275.html MISC http://svn.digium.com/view/asterisk/trunk/channels/chan_sip.c?r1=58907&r2=59038 http://bugs.digium.com/view.php?id=9313 GENTOO http://security.gentoo.org/glsa/glsa-200704-01.xml CONFIRM http://www.sineapps.com/news.php?rssid=1707 http://www.asterisk.org/node/48338 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/463434/100/0/threaded BID 23093

Return to the previous page.