Asterisk: >> Asterisk >> 1.4.1 Security Vulnerabilities
The channel driver in Asterisk before 1.2.17 and 1.4.x before 1.4.2 allows remote attackers to cause a denial of service (crash) via a SIP INVITE message with an SDP containing one valid and one invalid IP address.
CVSS Score
7.8
EPSS Score
0.154
Published
2007-03-21
Page 2