Signature Detail

Short Name	VOIP:SIP:ASTERISK-CHANNEL-DOS
Severity	Medium
Recommended	No
Recommended Action	Drop
Category	VOIP
Keywords	Digium Asterisk SIP Channel Driver Denial Of Service
Release Date	2013/01/09
Update Number	2223
Supported Platforms	idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

VOIP: Digium Asterisk SIP Channel Driver Denial Of Service

This signature detects attempts to exploit a known vulnerability against Digium Asterisk's SIP channel driver. A successful attack can result in a denial-of-service condition.

Extended Description

Asterisk is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause the application to crash, denying service to legitimate users.

Affected Products

Asterisk 10.0
Asterisk 1.8
Asterisk 1.8.0
Asterisk 1.8.1
Asterisk 1.8.1.2
Asterisk 1.8.2.1
Asterisk 1.8.2.4
Asterisk 1.8.3.1
Asterisk 1.8.3.3
Asterisk 1.8.4.1
Asterisk 1.8.4 2
Asterisk 1.8.4.3
Asterisk 1.8.4.4
Gentoo Linux
Red Hat Fedora 15
Red Hat Fedora 16

References

BugTraq: 50177
CVE: CVE-2011-4063

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

VOIP: Digium Asterisk SIP Channel Driver Denial Of Service

Extended Description

Affected Products

References