Intrusion Prevention

Digium.Asterisk.IAX2.POKE.Request.DoS

Description

This indicates an attack attempt against a denial-of-service vulnerability in Digium Asterisk.
The vulnerability is caused by an error when the vulnerable software handles a large volume of crafted messages. It allows a remote attacker to cause a denial-of-service condition to the asterisk service.

Affected Products

Asterisk Open Source versions 1.0.x
Asterisk Open Source versions 1.2.x
Asterisk Open Source versions 1.4.x
Asterisk Business Edition versions A.x.x
Asterisk Business Edition versions B.x.x.x
Asterisk Business Edition versions C.x.x.x
Asterisk Appliance Developer Kit versions 0.x.x
Asterisk Appliance s800i versions 1.0.x

Impact

Denial of service

Recommended Actions

Upgrade to the latest versions:
http://downloads.digium.com/

CVE References

CVE-2008-3263