NuytsTech Security

CVE-2011-2216

by ·

reqresp_parser.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.4.2 does not initialize certain strings, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a malformed Contact header.

Date published : 2011-06-06

http://www.securityfocus.com/bid/48096

http://www.securityfocus.com/archive/1/518236/100/0/threaded

Tags: