Intrusion Prevention

Asterisk.SIP.DoS

Description

This indicates an attempt to exploit a denial of service vulnerability in the SIP channel driver (channels/chan_sip.c) in Asterisk.
The vulnerability in the SIP channel driver (channels/chan_sip.c) can be exploited to cause the creation of "a real pvt structure" that uses more resources than necessary. This allows remote attackers to cause a denial of service.

Affected Products

Asterisk 1.2.x before 1.2.13 and 1.4.x before 1.4.0-beta3.

Impact

Denial of Service.

Recommended Actions

Update to "net-misc/asterisk-1.2.13" or later.

CVE References

CVE-2007-1306 CVE-2006-5445