SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  Asterisk Open Source T.38 SDP Buffer Overflow 1

Category: VoIP-ATTACKS      

Multiple stack-based buffer overflows in the process_sdp function in chan_sip.c of the SIP channel T.38 SDP parser in Asterisk before 1.4.3 allow remote attackers to execute arbitrary code via a long (1) T38FaxRateManagement or (2) T38FaxUdpEC SDP parameter in an SIP message.

References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2293


Relevant Information