Posts Tagged Asterisk Security Advisories
Asterisk Security Advisories – AST-2011-013: Possible remote enumeration of SIP endpoints with differing NAT settings
Posted by admin in asterisk, Asterisk Security Advisories, Security Advisories on December 8, 2011
Asterisk Project Security Advisory - AST-2011-013
|
Product |
Asterisk |
|
Summary |
Possible remote enumeration of SIP endpoints with differing NAT settings |
|
Nature of Advisory |
Unauthorized data disclosure |
|
Susceptibility |
Remote unauthenticated sessions |
|
Severity |
Minor |
|
Exploits Known |
Yes |
|
Reported On |
2011-07-18 |
|
Reported By |
Ben Williams |
|
Posted On |
|
|
Last Updated On |
December 8, 2011 |
|
Advisory Contact |
Terry Wilson <twilson@digium.com> |
|
CVE Name |
Asterisk Security Advisories – AST-2011-014: Remote crash possibility with SIP and the “automon” feature enabled
Posted by admin in asterisk, Asterisk Security Advisories, Security Advisories on December 7, 2011
Asterisk Project Security Advisory - AST-2011-014
|
Product |
Asterisk |
|
Summary |
Remote crash possibility with SIP and the “automon” feature enabled |
|
Nature of Advisory |
Remote crash vulnerability in a feature that is disabled by default |
|
Susceptibility |
Remote unauthenticated sessions |
|
Severity |
Moderate |
|
Exploits Known |
Yes |
|
Reported On |
November 2, 2011 |
|
Reported By |
Kristijan Vrban |
|
Posted On |
2011-11-03 |
|
Last Updated On |
December 7, 2011 |
|
Advisory Contact |
Terry Wilson <twilson@digium.com> |
|
CVE Name |
Asterisk Security Advisories – AST-2011-012: Remote crash vulnerability in SIP channel driver
Posted by admin in asterisk, Asterisk Security Releases, Security Advisories on October 17, 2011
Asterisk Project Security Advisory – AST-2011-012
|
Product |
Asterisk |
|
Summary |
Remote crash vulnerability in SIP channel |
|
Nature of Advisory |
Remote crash |
|
Susceptibility |
Remote authenticated sessions |
|
Severity |
Critical |
|
Exploits Known |
No |
|
Reported On |
October 4, 2011 |
|
Reported By |
Ehsan Foroughi |
|
Posted On |
October 17, 2011 |
|
Last Updated On |
October 17, 2011 |
|
Advisory Contact |
Terry Wilson <twilson@digium.com> |
|
CVE Name |
Asterisk 1.8.7.1 now available (Security Release)
Posted by admin in asterisk, Asterisk Security Releases, Security Advisories on October 17, 2011
Asterisk The Open Source PBX & Telephony Platform
The Asterisk Development Team has announced a security release for Asterisk 1.8.
The available security release is released as version 1.8.7.1.
This release is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/releases
The release of Asterisk 1.8.7.1 resolves an issue with SIP URI parsing which can lead to a remotely exploitable crash:
Remote Crash Vulnerability in SIP channel driver (AST-2011-012)
The issue and resolution is described in the AST-2011-012 security advisory.
For more information about the details of this vulnerability, please read the security advisory AST-2011-012, which was released at the same time as this announcement.
For a full list of changes in the current release, please see the ChangeLog:
Security advisory AST-2011-012 is available at:
Thank you for your continued support of Asterisk!
Asterisk Security Advisories – AST-2011-011: Possible enumeration of SIP users due to differing authentication responses
Posted by admin in asterisk, Asterisk Security Advisories, Security Advisories, sip on June 28, 2011
Asterisk Project Security Advisory - AST-2011-011
| Product | Asterisk |
| Summary | Possible enumeration of SIP users due to differing authentication responses |
| Nature of Advisory | Unauthorized data disclosure |
| Susceptibility | Remote unauthenticated sessions |
| Severity | Moderate |
| Exploits Known | No |
| Reported On | June 11, 2011 |
| Reported By | |
| Posted On | June 28, 2011 |
| Last Updated On | June 28, 2011 |
| Advisory Contact | Terry Wilson <twilson@digium.com> |
| CVE Name | CVE-2011-2536 |
Asterisk 1.4.39.2, Asterisk 1.6.1.22, Asterisk 1.6.2.16.2 and Asterisk 1.8.2.4 Now Available
Posted by admin in asterisk, Asterisk Security Releases, Security Advisories, t.38 on February 22, 2011
Asterisk The Open Source PBX & Telephony Platform
The Asterisk Development Team has announced security releases for Asterisk branches 1.4, 1.6.1, 1.6.2, and 1.8. The available security releases are released as versions 1.4.39.2, 1.6.1.22, 1.6.2.16.2, and 1.8.2.4.
These releases are available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/releases
The releases of Asterisk 1.4.39.2, 1.6.1.22, 1.6.2.16.2, and 1.8.2.4 resolve an issue that when decoding UDPTL packets, multiple stack and heap based arrays can be made to overflow by specially crafted packets. Systems doing T.38 pass through or termination are vulnerable. The issue and resolution are described in the AST-2011-002 security advisory.
For more information about the details of this vulnerability, please read the security advisory AST-2011-002, which was released at the same time as this announcement.
For a full list of changes in the current release, please see the ChangeLog:
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-…
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-…
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-…
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-…
Security advisory AST-2011-002 is available at:
Thank you for your continued support of Asterisk!
Asterisk Security Advisory – AST-2011-002: Multiple array overflow and crash vulnerabilities in UDPTL code
Posted by admin in asterisk, Asterisk Security Advisories, Security Advisories, t.38 on February 22, 2011
| Product | Asterisk |
| Summary | Multiple array overflow and crash vulnerabilities in UDPTL code |
| Nature of Advisory | Exploitable Stack and Heap Array Overflows |
| Susceptibility | Remote Unauthenticated Sessions |
| Severity | Critical |
| Exploits Known | No |
| Reported On | January 27, 2011 |
| Reported By | Matthew Nicholson |
| Posted On | February 21, 2011 |
| Last Updated On | February 22, 2011 |
| Advisory Contact | Matthew Nicholson <mnicholson@digium.com> |
| CVE Name |
| Description | When decoding UDPTL packets, multiple stack and heap based arrays can be made to overflow by specially crafted packets. Systems configured for T.38 pass through or termination are vulnerable. |
AST-2011-001: Stack buffer overflow in SIP channel driver
Posted by admin in asterisk, Asterisk Security Advisories, Security Advisories, sip on January 11, 2011
Asterisk Project Security Advisory - AST-2011-001
| Product | Asterisk |
| Summary | Stack buffer overflow in SIP channel driver |
| Nature of Advisory | Exploitable Stack Buffer Overflow |
| Susceptibility | Remote Authenticated Sessions |
| Severity | Moderate |
| Exploits Known | No |
| Reported On | January 11, 2011 |
| Reported By | Matthew Nicholson |
| Posted On | January 18, 2011 |
| Last Updated On | January 20, 2011 |
| Advisory Contact | Matthew Nicholson <mnicholson@digium.com> |
| CVE Name | CVE-2011-0495 |
| Description | When forming an outgoing SIP request while in pedantic mode, a stack buffer can be made to overflow if supplied with carefully crafted caller ID information. This vulnerability also affects the URIENCODE dialplan function and in some versions of asterisk, the AGI dialplan application as well. The ast_uri_encode function does not properly respect the size of its output buffer and can write past the end of it when encoding URIs. |
Asterisk Security Advisory – AST-2010-001: T.38 Remote Crash Vulnerability
Posted by admin in asterisk, Asterisk Security Advisories, Security Advisories, sip, t.38 on February 3, 2010
Asterisk The Open Source PBX & Telephony Platform
Asterisk Project Security Advisory - AST-2010-001
| Product | Asterisk |
| Summary | T.38 Remote Crash Vulnerability |
| Nature of Advisory | Denial of Service |
| Susceptibility | Remote unauthenticated sessions |
| Severity | Critical |
| Exploits Known | No |
| Reported On | 12/03/09 |
| Reported By | issues.asterisk.org users bklang and elsto |
| Posted On | 02/03/10 |
| Last Updated On | February 2, 2010 |
| Advisory Contact | David Vossel < dvossel AT digium DOT com > |
| CVE Name | CVE-2010-0441 |
Asterisk 1.6.0.22, Asterisk 1.6.1.14, Asterisk 1.6.2.2 Released
Posted by admin in asterisk, Asterisk Security Advisories, Releases, Security Advisories, sip, t.38 on February 3, 2010
Asterisk The Open Source PBX & Telephony Platform
The Asterisk Development Team has announced security releases for Asterisk as the following versions:
These releases are available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/
The releases of Asterisk 1.6.0.22, 1.6.1.14, and 1.6.2.2 include the fix described in security advisory AST-2010-001.
The issue is that an attacker attempting to negotiate T.38 over SIP can remotely crash Asterisk by modifying the FaxMaxDatagram field of the SDP to contain either a negative or exceptionally large value. The same crash will occur when the FaxMaxDatagram field is omitted from the SDP, as well.
For more information about the details of this vulnerability, please read the security advisory AST-2010-001, which was released at the same time as this announcement.
For a full list of changes in the current releases, please see the ChangeLog:
- http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.6.0.22
- http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.6.1.14
- http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.6.2.2
Security advisory AST-2010-001 is available at:
http://asterisk.net.ru/en/2010/02/03/asterisk-security-advisory-ast-2010-001-t-38-remote-crash-vulnerability/
Thank you for your continued support of Asterisk!
