VOIP: Digium Asterisk Compound RTCP Out-Of-Bounds Write
This signature detects attempts to exploit a known out-of-bounds vulnerability in Digium Asterisk. A remote, authenticated attacker can exploit this vulnerability by sending a specially crafted RTCP packet to the target server. Successful exploitation could cause denial-of-service conditions or, in the worst case, arbitrary code execution in the security context of Asterisk.
Extended Description
A Remote Crash issue was discovered in Asterisk Open Source 13.x before 13.18.4, 14.x before 14.7.4, and 15.x before 15.1.4 and Certified Asterisk before 13.13-cert9. Certain compound RTCP packets cause a crash in the RTCP Stack.
Affected Products
Digium asterisk
Short Name
VOIP:SIP:ASTERISK-RTCP-RCE
Severity
Major
Recommended
True
Recommended Action
Drop
Category
VOIP
Keywords
Asterisk CVE-2017-17664 Compound Digium Out-Of-Bounds RTCP Write bid:102201
Release Date
01/18/2018
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3337
Port
UDP/5000-31000
False Positive
Unknown
Vendors
Digium
CVSS Score
4.3