Denial of Service Vulnerability in Asterisk SIP Channel Driver
CVE-2009-2726

Currently unrated

Key Information:

Vendor: Asterisk
Status: Open Source; Opensource; Business Edition; Appliance S800i
Vendor: CVE Published:; 12 August 2009

What is CVE-2009-2726?

The SIP channel driver in multiple versions of Asterisk does not limit the maximum width when using sscanf style functions. This lack of validation allows remote attackers to exploit the vulnerability by sending specially crafted SIP packets that contain large ASCII decimal character sequences. Such an attack can lead to excessive stack memory consumption, causing a denial of service. Notable vectors for this attack include manipulating the CSeq value within SIP headers, using large Content-Length values, and altering the Session Description Protocol (SDP) in the packets.

References

http://labs.mudynamics.com/advisories/MU-200908-01.txt

x_refsource_MISC

http://www.vupen.com/english/advisories/2009/2229

vdb-entryx_refsource_VUPEN

http://downloads.digium.com/pub/security/AST-2009-005.html

x_refsource_CONFIRM

EPSS Score

9% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 12, 2009
Vulnerability Reserved
Aug 10, 2009