res/res_pjsip_exten_state.c in the PJSIP channel driver in Asterisk Open Source 12.x before 12.1.0 allows remote authenticated users to cause a denial of service (crash) via a SUBSCRIBE request without any Accept headers, which triggers an invalid pointer dereference.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2014-04-18T19:00:00
Updated: 2024-08-06T10:06:00.290Z
Reserved: 2014-03-05T00:00:00
Link: CVE-2014-2289
Vulnrichment
No data.
NVD
Status : Modified
Published: 2014-04-18T22:14:38.137
Modified: 2024-11-21T02:06:00.843
Link: CVE-2014-2289
Redhat
No data.