Asterisk IAX2 Handshake Spoofing Vulnerabilities
|
|
Article ID: 32132
Last updated: 27 Jan, 2009
|
|
|
|
Views: 428
|
|
Posted: 22 Jan, 2009
by: Tech Pubs S.
Updated: 27 Jan, 2009
by: Tech Pubs S.
|
|
Asterisk IAX2 Handshake Spoofing Vulnerabilities |
|
| This script is Copyright (C) 2008 Tenable Network Security, Inc. |
|
|
| Family | Denial of Service |
| Plugin ID | 32132 |
| Bugtraq ID | 28901
|
| CVE ID | CVE-2008-1897
CVE-2008-1923
|
|
| Description: |
Synopsis :
The remote VoIP service can be abused to conduct an amplification
attack against third-party hosts.
Description :
The version of Asterisk installed on the remote host does not properly
validate an IAX2 handshake. By spoofing NEW and ACK messages, an
unauthenticated remote attacker may be able to leverage this issue to
flood a third-party host with packets from the affected host
containing audio data.
See also :
https://www.altsci.com/concepts/page.php?s=asteri&p=2
http://bugs.digium.com/view.php?id=10078
http://archives.neohapsis.com/archives/bugtraq/2008-04/0292.html
Solution :
Upgrade to Asterisk 1.4.20 / 1.2.28, Asterisk Business Edition C.1.8.1
/ B.2.5.2, AsteriskNOW 1.0.3, s800i (Asterisk Appliance) 1.1.0.3 or
later.
Risk factor :
Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P) |
|
