CVE-2007-1561

Published: Mar 21, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

The channel driver in Asterisk before 1.2.17 and 1.4.x before 1.4.2 allows remote attackers to cause a denial of service (crash) via a SIP INVITE message with an SDP containing one valid and one invalid IP address.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

1017794

vdb-entry

x_refsource_SECTRACK

20070319 Asterisk SDP DOS vulnerability

mailing-list

x_refsource_FULLDISC

24564

third-party-advisory

x_refsource_SECUNIA

http://asterisk.org/node/48339

x_refsource_CONFIRM

SUSE-SA:2007:034

vendor-advisory

x_refsource_SUSE

20070321 Two new DoS Vulnerabilities in Asterisk Fixed

mailing-list

x_refsource_BUGTRAQ

23031

vdb-entry

x_refsource_BID

asterisk-sip-invite-dos(33068)

vdb-entry

x_refsource_XF

GLSA-200704-01

vendor-advisory

x_refsource_GENTOO

25582

third-party-advisory

x_refsource_SECUNIA

24719

third-party-advisory

x_refsource_SECUNIA

http://www.sineapps.com/news.php?rssid=1707

x_refsource_CONFIRM

ADV-2007-1039

vdb-entry

x_refsource_VUPEN

DSA-1358

vendor-advisory

x_refsource_DEBIAN

34479

vdb-entry

x_refsource_OSVDB

[VOIPSEC] 20070319 Asterisk SDP DOS vulnerability

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2007-1561

Description

Affected Products

References