all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Asterisk 20.1.0 Denial Of Service

Add to bookmarks
Dec. 15, 2023, 3:17 p.m. |

Packet Storm packetstormsecurity.com

When handling DTLS-SRTP for media setup, Asterisk version 20.1.0 is susceptible to denial of service due to a race condition in the hello handshake phase of the DTLS protocol. This attack can be done continuously, thus denying new DTLS-SRTP encrypted calls during the attack.

asterisk attack denial of service dtls encrypted handling handshake hello media protocol race race condition service version

Visit resource

More from packetstormsecurity.com / Packet Storm

AIDE 0.18.7 22 hours ago | packetstormsecurity.com
advanced aide algorithms can +17
Systemd Insecure PTY Handling 22 hours ago | packetstormsecurity.com
changing handling high insecure +5
Microsoft PlayReady Toolkit 22 hours ago | packetstormsecurity.com
access acquisition client code +19
Docker Privileged Container Kernel Escape 22 hours ago | packetstormsecurity.com
can container container escape daemon +9
Gentoo Linux Security Advisory 202405-16 22 hours ago | packetstormsecurity.com
advisory apache apache commons can +11
Gentoo Linux Security Advisory 202405-15 22 hours ago | packetstormsecurity.com
advisory can code code execution +12
Gentoo Linux Security Advisory 202405-14 22 hours ago | packetstormsecurity.com
advisory code code execution gentoo +7
Gentoo Linux Security Advisory 202405-13 22 hours ago | packetstormsecurity.com
advisory can gentoo injection +6
Gentoo Linux Security Advisory 202405-12 22 hours ago | packetstormsecurity.com
advisory arbitrary code arbitrary code execution can +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Red Team Operator

@ JPMorgan Chase & Co. | LONDON, United Kingdom
View on infosec-jobs.com

SOC Analyst

@ Resillion | Bengaluru, India
View on infosec-jobs.com

Director of Cyber Security

@ Revinate | San Francisco Bay Area
View on infosec-jobs.com

Jr. Security Incident Response Analyst

@ Kaseya | Miami, Florida, United States
View on infosec-jobs.com

Infrastructure Vulnerability Consultant - (Cloud Security , CSPM)

@ Blue Yonder | Hyderabad
View on infosec-jobs.com

Product Security Lead

@ Lely | Maassluis, Netherlands
View on infosec-jobs.com
View more jobs