CVE-2009-2726

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

12/08/2009

Last modified:

15/02/2024

Description

The SIP channel driver in Asterisk Open Source 1.2.x before 1.2.34, 1.4.x before 1.4.26.1, 1.6.0.x before 1.6.0.12, and 1.6.1.x before 1.6.1.4; Asterisk Business Edition A.x.x, B.x.x before B.2.5.9, C.2.x before C.2.4.1, and C.3.x before C.3.1; and Asterisk Appliance s800i 1.2.x before 1.3.0.3 does not use a maximum width when invoking sscanf style functions, which allows remote attackers to cause a denial of service (stack memory consumption) via SIP packets containing large sequences of ASCII decimal characters, as demonstrated via vectors related to (1) the CSeq value in a SIP header, (2) large Content-Length value, and (3) SDP.

Impact

Vector 2.0

AV:N/AC:L/Au:N/C:N/I:N/A:C CVSS v2.0 Severity and Metrics:

Base Score: 7.80 HIGH
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Attack Vector (AV): Network
Attack Complexity (AC): Low
Authentication (Au): None
Confidentiality (C): None
Integrity (I): None
Availability (A): Complete

Base Score 2.0

7.80

Severity 2.0

HIGH

Vulnerable products and versions

CPE	From	Up to
cpe:2.3:a:digium:asterisk:::business:::::*		b.2.5.9 (excluding)
cpe:2.3:a:digium:asterisk:::business:::::*	c.2.0 (including)	c.2.4.1 (including)
cpe:2.3:a:digium:asterisk:::business:::::*	c.3.0 (including)	c.3.1 (excluding)
cpe:2.3:o:digium:s800i_firmware::::::::	1.2.0 (including)	1.3.0.3 (excluding)
cpe:2.3:h:digium:s800i:-:::::::*
cpe:2.3:a:digium:asterisk::::::::	1.2.0 (including)	1.2.34 (excluding)
cpe:2.3:a:digium:asterisk::::::::	1.4.0 (including)	1.4.26.1 (excluding)
cpe:2.3:a:digium:asterisk::::::::	1.6.0 (including)	1.6.0.12 (excluding)
cpe:2.3:a:digium:asterisk::::::::	1.6.1 (including)	1.6.1.4 (excluding)

To consult the complete list of CPE names with products and versions, see this page

CVE-2009-2726

Description

Impact

Vulnerable products and versions

References to Advisories, Solutions, and Tools