CVE-2018-7287
published 2018-02-22CVE-2018-7287: An issue was discovered in res_http_websocket.c in Asterisk 15.x through 15.2.1. If the HTTP server is enabled (default is disabled), WebSocket payloads of…
PriorityP334medium5.9CVSS 3.0
AVNACHPRNUINSUCNINAH
EPSS
11.90%
95.6th percentile
An issue was discovered in res_http_websocket.c in Asterisk 15.x through 15.2.1. If the HTTP server is enabled (default is disabled), WebSocket payloads of size 0 are mishandled (with a busy loop).
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
CVSS provenance
nvdv3.05.9MEDIUMCVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
vendor_debian5.9LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2018-7287: asterisk - An issue was discovered in res_http_websocket.c in Asterisk 15.x through 15.2.1....
vendor_debian·2018·CVSS 5.9
CVE-2018-7287 [MEDIUM] CVE-2018-7287: asterisk - An issue was discovered in res_http_websocket.c in Asterisk 15.x through 15.2.1....
An issue was discovered in res_http_websocket.c in Asterisk 15.x through 15.2.1. If the HTTP server is enabled (default is disabled), WebSocket payloads of size 0 are mishandled (with a busy loop).
Scope: local
bullseye: resolved
sid: resolved
GHSA
GHSA-38rg-6v6g-2qmq: An issue was discovered in res_http_websocket
ghsa_unreviewed·2022-05-13
CVE-2018-7287 [MEDIUM] CWE-754 GHSA-38rg-6v6g-2qmq: An issue was discovered in res_http_websocket
An issue was discovered in res_http_websocket.c in Asterisk 15.x through 15.2.1. If the HTTP server is enabled (default is disabled), WebSocket payloads of size 0 are mishandled (with a busy loop).
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2018-7287 asterisk: Denial of Service (DoS) in WebSocket frames with 0 sized payload [fedora-all]
bugzilla·2018-02-22·CVSS 5.9
CVE-2018-7287 [MEDIUM] CVE-2018-7287 asterisk: Denial of Service (DoS) in WebSocket frames with 0 sized payload [fedora-all]
CVE-2018-7287 asterisk: Denial of Service (DoS) in WebSocket frames with 0 sized payload [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects mul
Bugzilla
CVE-2018-7287 asterisk: Denial of Service (DoS) in WebSocket frames with 0 sized payload
bugzilla·2018-02-22·CVSS 5.9
CVE-2018-7287 [MEDIUM] CVE-2018-7287 asterisk: Denial of Service (DoS) in WebSocket frames with 0 sized payload
CVE-2018-7287 asterisk: Denial of Service (DoS) in WebSocket frames with 0 sized payload
A flaw was discovered in Asterisk 15.x. When reading a websocket, the length was not being checked. If a payload of length 0 was read, it would result in a busy loop that waited for the underlying connection to close.
References:
http://downloads.asterisk.org/pub/security/AST-2018-006.html
https://issues.asterisk.org/jira/browse/ASTERISK-27658
Patch:
http://downloads.asterisk.org/pub/security/AST-2018-006-15.diff
Discussion:
Created asterisk tracking bugs for this issue:
Affects: epel-6 [bug 1548151]
Affects: fedora-all [bug 1548150]
---
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refe
Bugzilla
CVE-2018-7287 asterisk: Denial of Service (DoS) in WebSocket frames with 0 sized payload [epel-6]
bugzilla·2018-02-22·CVSS 5.9
CVE-2018-7287 [MEDIUM] CVE-2018-7287 asterisk: Denial of Service (DoS) in WebSocket frames with 0 sized payload [epel-6]
CVE-2018-7287 asterisk: Denial of Service (DoS) in WebSocket frames with 0 sized payload [epel-6]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of epel-6.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
Discussion:
Use the following templ
http://downloads.digium.com/pub/security/AST-2018-006.htmlhttp://www.securityfocus.com/bid/103120http://www.securitytracker.com/id/1040419https://issues.asterisk.org/jira/browse/ASTERISK-27658http://downloads.digium.com/pub/security/AST-2018-006.htmlhttp://www.securityfocus.com/bid/103120http://www.securitytracker.com/id/1040419https://issues.asterisk.org/jira/browse/ASTERISK-27658
2018-02-22
Published