Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 VOIP:SIP:ASTERISK-UDPTL-BO

Severity

 High

Recommended

 No

Category

 VOIP

Keywords

 Digium Asterisk UDPTL Processing Heap Buffer Overflow

Release Date

 2013/01/07

Update Number

 2222

Supported Platforms

 idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

VOIP: Digium Asterisk UDPTL Processing Heap Buffer Overflow


This signature detects attempts to exploit a known vulnerability against Digium Asterisk. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected server.

Extended Description

Asterisk is prone to multiple remote buffer-overflow vulnerabilities because the application fails to perform adequate boundary checks on user-supplied data. An attacker can exploit these issues to execute arbitrary code within the context of the affected application or to crash the application, denying service to legitimate users.

Affected Products

  • Asterisk 1.4.1
  • Asterisk 1.4.10
  • Asterisk 1.4.11
  • Asterisk 1.4.12
  • Asterisk 1.4.13
  • Asterisk 1.4.14
  • Asterisk 1.4.15
  • Asterisk 1.4.16
  • Asterisk 1.4.17
  • Asterisk 1.4.18
  • Asterisk 1.4.18.1
  • Asterisk 1.4.19
  • Asterisk 1.4.19.1
  • Asterisk 1.4.19-Rc3
  • Asterisk 1.4.2
  • Asterisk 1.4.21.2
  • Asterisk 1.4.22
  • Asterisk 1.4.22.1
  • Asterisk 1.4.23
  • Asterisk 1.4.23.1
  • Asterisk 1.4.23 .2
  • Asterisk 1.4.24
  • Asterisk 1.4.24.1
  • Asterisk 1.4.26
  • Asterisk 1.4.26.1
  • Asterisk 1.4.26.2
  • Asterisk 1.4.26.3
  • Asterisk 1.4.27 1
  • Asterisk 1.4.3
  • Asterisk 1.4.38.1
  • Asterisk 1.4.39.1
  • Asterisk 1.4.4
  • Asterisk 1.4.5
  • Asterisk 1.4.6
  • Asterisk 1.4.7
  • Asterisk 1.4.8
  • Asterisk 1.4.9
  • Asterisk 1.6.1
  • Asterisk 1.6.1 11
  • Asterisk 1.6.1.14
  • Asterisk 1.6.1.17
  • Asterisk 1.6.1.21
  • Asterisk 1.6.1.5
  • Asterisk 1.6.1.6
  • Asterisk 1.6.1.7
  • Asterisk 1.6.1.8
  • Asterisk 1.6.1.9
  • Asterisk 1.6.2
  • Asterisk 1.6.2.15.1
  • Asterisk 1.6.2.16.1
  • Asterisk 1.8.0
  • Asterisk 1.8.1
  • Asterisk 1.8.1.2
  • Asterisk 1.8.2.1
  • Asterisk Asterisk Business Edition C.3.1.0
  • Asterisk Asterisk Business Edition C.3.1 1
  • Asterisk Asterisk Business Edition C.3.2 2
  • Asterisk Asterisk Business Edition C.3.2 3
  • Asterisk Asterisk Business Edition C.3.3.2
  • Asterisk Asterisk Business Edition C.3.6.2
  • Debian Linux 5.0
  • Debian Linux 5.0 Alpha
  • Debian Linux 5.0 Amd64
  • Debian Linux 5.0 Arm
  • Debian Linux 5.0 Armel
  • Debian Linux 5.0 Hppa
  • Debian Linux 5.0 Ia-32
  • Debian Linux 5.0 Ia-64
  • Debian Linux 5.0 M68k
  • Debian Linux 5.0 Mips
  • Debian Linux 5.0 Mipsel
  • Debian Linux 5.0 Powerpc
  • Debian Linux 5.0 S/390
  • Debian Linux 5.0 Sparc
  • Gentoo Linux
  • Red Hat Fedora 13
  • Red Hat Fedora 14
  • Red Hat Fedora 15

References

  • BugTraq: 46474

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out