The Publish/Subscribe Framework in the PJSIP channel driver in Asterisk Open Source 12.x before 12.3.1, when sub_min_expiry is set to zero, allows remote attackers to cause a denial of service (assertion failure and crash) via an unsubscribe request when not subscribed to the device.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2014-06-17T14:00:00

Updated: 2024-08-06T11:04:28.408Z

Reserved: 2014-06-12T00:00:00

Link: CVE-2014-4045

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2014-06-17T14:55:07.830

Modified: 2024-11-21T02:09:24.130

Link: CVE-2014-4045

cve-icon Redhat

No data.