Security Advisory

CVE-2018-19278

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-11-14 20:00:00

Last updated 2024-09-16 17:39:00

Assigner mitre

State PUBLISHED

Description

Buffer overflow in DNS SRV and NAPTR lookups in Digium Asterisk 15.x before 15.6.2 and 16.x before 16.0.1 allows remote attackers to crash Asterisk via a specially crafted DNS SRV or NAPTR response, because a buffer size is supposed to match an expanded length but actually matches a compressed length.

← Browse all CVEs View on cve.org ↗