Stack-based buffer overflow in res/res_format_attr_h264.c in Asterisk Open Source 11.x prior to 11.2.2 allows remote malicious users to execute arbitrary code via a long sprop-parameter-sets H.264 media attribute in a SIP Session Description Protocol (SDP) header.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
asterisk open source 11.0.0 |
||
asterisk open source 11.0.1 |
||
asterisk open source 11.0.2 |
||
asterisk open source 11.1.0 |
||
asterisk open source 11.1.1 |
||
asterisk open source 11.2.1 |
||
asterisk open source 11.1.2 |
||
asterisk open source 11.2.0 |