CVE-2011-2216
EPSS 3.5%發布日:2011/6/6修改日:2026/4/28
描述
reqresp_parser.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.4.2 does not initialize certain strings, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a malformed Contact header.
受影響套件(1)
- Debian/asteriskfrom 0, < 1:1.8.4.2-1