CVE-2011-2665
EPSS 2.3%Published: 7/6/2011Modified: 4/28/2026
Description
reqresp_parser.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.4.3 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a SIP packet with a Contact header that lacks a < (less than) character.
Affected packages (1)
- Debian/asteriskfrom 0, < 1:1.8.4.3-1