CVE-2007-4103
published 2007-07-31CVE-2007-4103: The IAX2 channel driver (chan_iax2) in Asterisk Open 1.2.x before 1.2.23, 1.4.x before 1.4.9, and Asterisk Appliance Developer Kit before 0.6.0, when…
PriorityP433high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
5.94%
92.4th percentile
The IAX2 channel driver (chan_iax2) in Asterisk Open 1.2.x before 1.2.23, 1.4.x before 1.4.9, and Asterisk Appliance Developer Kit before 0.6.0, when configured to allow unauthenticated calls, allows remote attackers to cause a denial of service (resource exhaustion) via a flood of calls that do not complete a 3-way handshake, which causes an ast_channel to be allocated but not released.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | asterisk | < asterisk 1:1.4.9~dfsg-1 (bullseye) | asterisk 1:1.4.9~dfsg-1 (bullseye) |
| digium | asterisk | >= 0 < 1:1.4.9~dfsg-1 | 1:1.4.9~dfsg-1 |
| digium | asterisk | >= 1.2.20 < 1.2.23 | 1.2.23 |
| digium | asterisk | >= 1.4.0 < 1.4.9 | 1.4.9 |
| digium | asterisk_appliance_developer_kit | < 0.6.0 | 0.6.0 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.07.8HIGHAV:N/AC:L/Au:N/C:N/I:N/A:C
osv7.5HIGH
vendor_debian7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-9jqm-gvwx-9wxq: The IAX2 channel driver (chan_iax2) in Asterisk Open 1
ghsa_unreviewed·2022-05-01
CVE-2007-4103 [HIGH] CWE-772 GHSA-9jqm-gvwx-9wxq: The IAX2 channel driver (chan_iax2) in Asterisk Open 1
The IAX2 channel driver (chan_iax2) in Asterisk Open 1.2.x before 1.2.23, 1.4.x before 1.4.9, and Asterisk Appliance Developer Kit before 0.6.0, when configured to allow unauthenticated calls, allows remote attackers to cause a denial of service (resource exhaustion) via a flood of calls that do not complete a 3-way handshake, which causes an ast_channel to be allocated but not released.
OSV
CVE-2007-4103: The IAX2 channel driver (chan_iax2) in Asterisk Open 1
osv·2007-07-31·CVSS 7.5
CVE-2007-4103 [HIGH] CVE-2007-4103: The IAX2 channel driver (chan_iax2) in Asterisk Open 1
The IAX2 channel driver (chan_iax2) in Asterisk Open 1.2.x before 1.2.23, 1.4.x before 1.4.9, and Asterisk Appliance Developer Kit before 0.6.0, when configured to allow unauthenticated calls, allows remote attackers to cause a denial of service (resource exhaustion) via a flood of calls that do not complete a 3-way handshake, which causes an ast_channel to be allocated but not released.
Debian
CVE-2007-4103: asterisk - The IAX2 channel driver (chan_iax2) in Asterisk Open 1.2.x before 1.2.23, 1.4.x ...
vendor_debian·2007·CVSS 7.5
CVE-2007-4103 [HIGH] CVE-2007-4103: asterisk - The IAX2 channel driver (chan_iax2) in Asterisk Open 1.2.x before 1.2.23, 1.4.x ...
The IAX2 channel driver (chan_iax2) in Asterisk Open 1.2.x before 1.2.23, 1.4.x before 1.4.9, and Asterisk Appliance Developer Kit before 0.6.0, when configured to allow unauthenticated calls, allows remote attackers to cause a denial of service (resource exhaustion) via a flood of calls that do not complete a 3-way handshake, which causes an ast_channel to be allocated but not released.
Scope: local
bullseye: resolved (fixed in 1:1.4.9~dfsg-1)
sid: resolved (fixed in 1:1.4.9~dfsg-1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
CWE
Uncontrolled Resource Consumption
mitre_cwe
CWE-400 Uncontrolled Resource Consumption
CWE-400: Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource.
Modes of Introduction:
Phase: Operation
Note: The product could be operated in a system or environment with lower resource limits than expected, which might make it easier for attackers to consume all available resources.
Phase: System Configuration
Note: The product could be configured with lower resource limits than expected, which might make it easier for attackers to consume all available resources.
Phase: Architecture and Design
Note: The designer might not consider how to handle and throttle excessive resource requests, which typically requires careful planning to handle more gracefully than a crash or exit.
Phase: Implementation
Note: There are at
CWE
Missing Release of Resource after Effective Lifetime
mitre_cwe
CWE-772 Missing Release of Resource after Effective Lifetime
CWE-772: Missing Release of Resource after Effective Lifetime
The product does not release a resource after its effective lifetime has ended, i.e., after the resource is no longer needed.
Modes of Introduction:
Phase: Implementation
Common Consequences:
Scope: Availability. Impact: DoS: Resource Consumption (Other), DoS: Resource Consumption (Memory), DoS: Resource Consumption (CPU). An attacker that can influence the allocation of resources that are not properly released could deplete the available resource pool and prevent all other processes from accessing the same type of resource. Frequently-affected resources include memory, CPU, disk space, power or battery, etc.
Detection Methods:
Automated Static Analysis: Automated static analysis, commonly referred to as Static Application S
http://bugs.gentoo.org/show_bug.cgi?id=185713http://ftp.digium.com/pub/asa/ASA-2007-018.pdfhttp://osvdb.org/38197http://secunia.com/advisories/26274http://secunia.com/advisories/29051http://security.gentoo.org/glsa/glsa-200802-11.xmlhttp://securityreason.com/securityalert/2960http://www.securityfocus.com/archive/1/475069/100/0/threadedhttp://www.securityfocus.com/bid/24950http://www.securitytracker.com/id?1018472http://www.vupen.com/english/advisories/2007/2701http://bugs.gentoo.org/show_bug.cgi?id=185713http://ftp.digium.com/pub/asa/ASA-2007-018.pdfhttp://osvdb.org/38197http://secunia.com/advisories/26274http://secunia.com/advisories/29051http://security.gentoo.org/glsa/glsa-200802-11.xmlhttp://securityreason.com/securityalert/2960http://www.securityfocus.com/archive/1/475069/100/0/threadedhttp://www.securityfocus.com/bid/24950http://www.securitytracker.com/id?1018472http://www.vupen.com/english/advisories/2007/2701
2007-07-31
Published