Asterisk
  1. Asterisk
  2. ASTERISK-12245

An issue with the IAX2 channel allows anonymous connections to cause resource starvation

    Details

    • Type: Bug Bug
    • Status: Closed
    • Severity: Major Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Target Release Version/s: None
    • Component/s: Channels/chan_iax2
    • Labels:
      None
    • Mantis ID:
      12912
    • Regression:
      No

      Description

      The following is a Denial of Service vulnerability in Asterisk submitted to the SecuriTeam Secure disclosure project. The vulnerability causes Asterisk to use 100% cpu for about 8 minutes at a modest cost to the attacker.

      The attack can be spoofed and it is possible to trigger against servers that don't allow anonymous connections.

      Asterisk version 1.4.20.1 (seems to affect 1.4.19.1+)

                • ADDITIONAL INFORMATION ******

      We would rather post the exploit code here - unless we are instructed otherwise - instead we will like to send it to a non-public locate

        Activity

        Hide
        Digium Subversion added a comment -

        Repository: asterisk
        Revision: 216004

        _U branches/1.6.1/
        U branches/1.6.1/channels/chan_iax2.c
        U branches/1.6.1/channels/iax2-parser.c
        U branches/1.6.1/channels/iax2-parser.h
        U branches/1.6.1/channels/iax2.h
        U branches/1.6.1/configs/iax.conf.sample
        U branches/1.6.1/include/asterisk/acl.h
        U branches/1.6.1/include/asterisk/astobj2.h
        U branches/1.6.1/main/acl.c
        U branches/1.6.1/main/astobj2.c

        ------------------------------------------------------------------------
        r216004 | dvossel | 2009-09-03 13:42:13 -0500 (Thu, 03 Sep 2009) | 13 lines

        Merged revisions 215955 via svnmerge from
        https://origsvn.digium.com/svn/asterisk/trunk

        ........
        r215955 | dvossel | 2009-09-03 11:31:54 -0500 (Thu, 03 Sep 2009) | 6 lines

        Merge code associated with AST-2009-006

        (closes issue ASTERISK-12245)
        Reported by: rathaus
        Tested by: tilghman, russell, dvossel, dbrooks
        ........

        ------------------------------------------------------------------------

        http://svn.digium.com/view/asterisk?view=rev&revision=216004

        Show
        Digium Subversion added a comment - Repository: asterisk Revision: 216004 _U branches/1.6.1/ U branches/1.6.1/channels/chan_iax2.c U branches/1.6.1/channels/iax2-parser.c U branches/1.6.1/channels/iax2-parser.h U branches/1.6.1/channels/iax2.h U branches/1.6.1/configs/iax.conf.sample U branches/1.6.1/include/asterisk/acl.h U branches/1.6.1/include/asterisk/astobj2.h U branches/1.6.1/main/acl.c U branches/1.6.1/main/astobj2.c ------------------------------------------------------------------------ r216004 | dvossel | 2009-09-03 13:42:13 -0500 (Thu, 03 Sep 2009) | 13 lines Merged revisions 215955 via svnmerge from https://origsvn.digium.com/svn/asterisk/trunk ........ r215955 | dvossel | 2009-09-03 11:31:54 -0500 (Thu, 03 Sep 2009) | 6 lines Merge code associated with AST-2009-006 (closes issue ASTERISK-12245 ) Reported by: rathaus Tested by: tilghman, russell, dvossel, dbrooks ........ ------------------------------------------------------------------------ http://svn.digium.com/view/asterisk?view=rev&revision=216004
        Hide
        Digium Subversion added a comment -

        Repository: asterisk
        Revision: 216007

        _U branches/1.6.2/
        U branches/1.6.2/channels/chan_iax2.c
        U branches/1.6.2/channels/iax2-parser.c
        U branches/1.6.2/channels/iax2-parser.h
        U branches/1.6.2/channels/iax2.h
        U branches/1.6.2/configs/iax.conf.sample
        U branches/1.6.2/include/asterisk/acl.h
        U branches/1.6.2/include/asterisk/astobj2.h
        U branches/1.6.2/main/acl.c
        U branches/1.6.2/main/astobj2.c

        ------------------------------------------------------------------------
        r216007 | dvossel | 2009-09-03 13:43:28 -0500 (Thu, 03 Sep 2009) | 13 lines

        Merged revisions 215955 via svnmerge from
        https://origsvn.digium.com/svn/asterisk/trunk

        ........
        r215955 | dvossel | 2009-09-03 11:31:54 -0500 (Thu, 03 Sep 2009) | 6 lines

        Merge code associated with AST-2009-006

        (closes issue ASTERISK-12245)
        Reported by: rathaus
        Tested by: tilghman, russell, dvossel, dbrooks
        ........

        ------------------------------------------------------------------------

        http://svn.digium.com/view/asterisk?view=rev&revision=216007

        Show
        Digium Subversion added a comment - Repository: asterisk Revision: 216007 _U branches/1.6.2/ U branches/1.6.2/channels/chan_iax2.c U branches/1.6.2/channels/iax2-parser.c U branches/1.6.2/channels/iax2-parser.h U branches/1.6.2/channels/iax2.h U branches/1.6.2/configs/iax.conf.sample U branches/1.6.2/include/asterisk/acl.h U branches/1.6.2/include/asterisk/astobj2.h U branches/1.6.2/main/acl.c U branches/1.6.2/main/astobj2.c ------------------------------------------------------------------------ r216007 | dvossel | 2009-09-03 13:43:28 -0500 (Thu, 03 Sep 2009) | 13 lines Merged revisions 215955 via svnmerge from https://origsvn.digium.com/svn/asterisk/trunk ........ r215955 | dvossel | 2009-09-03 11:31:54 -0500 (Thu, 03 Sep 2009) | 6 lines Merge code associated with AST-2009-006 (closes issue ASTERISK-12245 ) Reported by: rathaus Tested by: tilghman, russell, dvossel, dbrooks ........ ------------------------------------------------------------------------ http://svn.digium.com/view/asterisk?view=rev&revision=216007
        Hide
        Digium Subversion added a comment -

        Repository: asterisk
        Revision: 216010

        U tags/1.6.1.6/channels/chan_iax2.c
        U tags/1.6.1.6/channels/iax2-parser.c
        U tags/1.6.1.6/channels/iax2-parser.h
        U tags/1.6.1.6/channels/iax2.h
        U tags/1.6.1.6/configs/iax.conf.sample
        U tags/1.6.1.6/include/asterisk/acl.h
        U tags/1.6.1.6/include/asterisk/astobj2.h
        U tags/1.6.1.6/main/acl.c
        U tags/1.6.1.6/main/astobj2.c

        ------------------------------------------------------------------------
        r216010 | dvossel | 2009-09-03 13:50:21 -0500 (Thu, 03 Sep 2009) | 8 lines

        Merge code associated with AST-2009-006

        (closes issue ASTERISK-12245)
        Reported by: rathaus
        Tested by: tilghman, russell, dvossel, dbrooks

        ------------------------------------------------------------------------

        http://svn.digium.com/view/asterisk?view=rev&revision=216010

        Show
        Digium Subversion added a comment - Repository: asterisk Revision: 216010 U tags/1.6.1.6/channels/chan_iax2.c U tags/1.6.1.6/channels/iax2-parser.c U tags/1.6.1.6/channels/iax2-parser.h U tags/1.6.1.6/channels/iax2.h U tags/1.6.1.6/configs/iax.conf.sample U tags/1.6.1.6/include/asterisk/acl.h U tags/1.6.1.6/include/asterisk/astobj2.h U tags/1.6.1.6/main/acl.c U tags/1.6.1.6/main/astobj2.c ------------------------------------------------------------------------ r216010 | dvossel | 2009-09-03 13:50:21 -0500 (Thu, 03 Sep 2009) | 8 lines Merge code associated with AST-2009-006 (closes issue ASTERISK-12245 ) Reported by: rathaus Tested by: tilghman, russell, dvossel, dbrooks ------------------------------------------------------------------------ http://svn.digium.com/view/asterisk?view=rev&revision=216010
        Hide
        Digium Subversion added a comment -

        Repository: asterisk
        Revision: 216012

        U tags/1.6.0.15/channels/chan_iax2.c
        U tags/1.6.0.15/channels/iax2-parser.c
        U tags/1.6.0.15/channels/iax2-parser.h
        U tags/1.6.0.15/channels/iax2.h
        U tags/1.6.0.15/configs/iax.conf.sample
        U tags/1.6.0.15/include/asterisk/acl.h
        U tags/1.6.0.15/include/asterisk/astobj2.h
        U tags/1.6.0.15/main/acl.c
        U tags/1.6.0.15/main/astobj2.c

        ------------------------------------------------------------------------
        r216012 | dvossel | 2009-09-03 13:51:50 -0500 (Thu, 03 Sep 2009) | 7 lines

        Merge code associated with AST-2009-006

        (closes issue ASTERISK-12245)
        Reported by: rathaus
        Tested by: tilghman, russell, dvossel, dbrooks

        ------------------------------------------------------------------------

        http://svn.digium.com/view/asterisk?view=rev&revision=216012

        Show
        Digium Subversion added a comment - Repository: asterisk Revision: 216012 U tags/1.6.0.15/channels/chan_iax2.c U tags/1.6.0.15/channels/iax2-parser.c U tags/1.6.0.15/channels/iax2-parser.h U tags/1.6.0.15/channels/iax2.h U tags/1.6.0.15/configs/iax.conf.sample U tags/1.6.0.15/include/asterisk/acl.h U tags/1.6.0.15/include/asterisk/astobj2.h U tags/1.6.0.15/main/acl.c U tags/1.6.0.15/main/astobj2.c ------------------------------------------------------------------------ r216012 | dvossel | 2009-09-03 13:51:50 -0500 (Thu, 03 Sep 2009) | 7 lines Merge code associated with AST-2009-006 (closes issue ASTERISK-12245 ) Reported by: rathaus Tested by: tilghman, russell, dvossel, dbrooks ------------------------------------------------------------------------ http://svn.digium.com/view/asterisk?view=rev&revision=216012
        Hide
        Digium Subversion added a comment -

        Repository: asterisk
        Revision: 216015

        U tags/1.4.26.2/channels/chan_iax2.c
        U tags/1.4.26.2/channels/iax2-parser.c
        U tags/1.4.26.2/channels/iax2-parser.h
        U tags/1.4.26.2/channels/iax2.h
        U tags/1.4.26.2/configs/iax.conf.sample
        U tags/1.4.26.2/include/asterisk/acl.h
        U tags/1.4.26.2/include/asterisk/astobj2.h
        U tags/1.4.26.2/main/acl.c
        U tags/1.4.26.2/main/astobj2.c

        ------------------------------------------------------------------------
        r216015 | dvossel | 2009-09-03 14:11:07 -0500 (Thu, 03 Sep 2009) | 8 lines

        Merge code associated with AST-2009-006

        (closes issue ASTERISK-12245)
        Reported by: rathaus
        Tested by: tilghman, russell, dvossel, dbrooks

        ------------------------------------------------------------------------

        http://svn.digium.com/view/asterisk?view=rev&revision=216015

        Show
        Digium Subversion added a comment - Repository: asterisk Revision: 216015 U tags/1.4.26.2/channels/chan_iax2.c U tags/1.4.26.2/channels/iax2-parser.c U tags/1.4.26.2/channels/iax2-parser.h U tags/1.4.26.2/channels/iax2.h U tags/1.4.26.2/configs/iax.conf.sample U tags/1.4.26.2/include/asterisk/acl.h U tags/1.4.26.2/include/asterisk/astobj2.h U tags/1.4.26.2/main/acl.c U tags/1.4.26.2/main/astobj2.c ------------------------------------------------------------------------ r216015 | dvossel | 2009-09-03 14:11:07 -0500 (Thu, 03 Sep 2009) | 8 lines Merge code associated with AST-2009-006 (closes issue ASTERISK-12245 ) Reported by: rathaus Tested by: tilghman, russell, dvossel, dbrooks ------------------------------------------------------------------------ http://svn.digium.com/view/asterisk?view=rev&revision=216015

          People

          • Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development