| The Vigil@nce team watches vulnerabilities impacting your computers, and then offers solutions, a database and tools to correct them. |
|
 |
|
|
|
vulnerability CVE-2012-0885
Asterisk: denial of service via SRTP
Synthesis of the vulnerability
| When the res_srtp module is loaded, an attacker can negotiate an encrypted video stream, in order to stop Asterisk. |
Severity: 2/4.
Creation date: 20/01/2012.
|
Impacted products
Description of the vulnerability
The SRTP (Secure Real-time Transport Protocol) protocol adds authentication and encryption features to RTP. The Asterisk res_srtp module implements SRTP.
The RFC 4568 defines security attributes of SDP (Session Description Protocol). The "crypto:" attribute indicates algorithms and keys. The process_crypto() function of the channels/chan_sip.c file decodes this attribute.
However, if there is no RTP session for the requested media type (video for example), the usage of the "crypto:" attribute dereferences a NULL pointer in process_crypto().
When the res_srtp module is loaded, an attacker can therefore negotiate an encrypted video stream, in order to stop Asterisk. |
Share this bulletin
Complete Vigil@nce bulletin
Characteristics
Title: Asterisk: denial of service via SRTP.
Keywords: 4568 Asterisk Description NULL Protocol RFC RTP Real-time SDP SRTP Secure Session Transport chan_sip denial process_crypto res_srtp service.
Identifiers: AST-2012-001, BID-51581, CVE-2012-0885, VIGILANCE-VUL-11310.
|
Information sources
Solutions for this vulnerability
Computer vulnerabilities tracking service
Vigil@nce provides a computers vulnerabilities note. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications. The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system. The technology watch team tracks security threats targeting the computer system.
|
