ID de Prueba:	1.3.6.1.4.1.25623.1.0.146370
Categoría:	Denial of Service
Título:	Asterisk DoS Vulnerability (AST-2021-007)
Resumen:	Asterisk is prone to a denial of service (DoS) vulnerability in; the PJSIP channel driver.
Descripción:	Summary: Asterisk is prone to a denial of service (DoS) vulnerability in the PJSIP channel driver. Vulnerability Insight: When Asterisk receives a re-INVITE without SDP after having sent a BYE request a crash will occur. This occurs due to the Asterisk channel no longer being present while code assumes it is. Affected Software/OS: Asterisk Open Source 16.17.0, 16.18.0, 16.19.0, 18.3.0, 18.4.0 and 18.5.0. Solution: Update to version 16.19.1, 18.5.1 or later. CVSS Score: 4.0 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2021-31878 http://seclists.org/fulldisclosure/2021/Jul/48 http://downloads.asterisk.org/pub/security/AST-2021-007.html http://packetstormsecurity.com/files/163638/Asterisk-Project-Security-Advisory-AST-2021-007.html https://downloads.digium.com/pub/security/AST-2021-007.html https://issues.asterisk.org/jira/browse/ASTERISK-29381
Copyright	Copyright (C) 2021 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.