Yate SIP Protocol Denial of Service Vulnerability
BID:23590
Info
Yate SIP Protocol Denial of Service Vulnerability
| Bugtraq ID: | 23590 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 23 2007 12:00AM |
| Updated: | Apr 23 2007 09:30PM |
| Credit: | The vendor reported this issue. |
| Vulnerable: |
Null Team Yate 1.1 Null Team Yate 1.0 |
| Not Vulnerable: |
Null Team Yate 1.2 |
Discussion
Yate SIP Protocol Denial of Service Vulnerability
Yate is prone to a remote denial-of-service vulnerability because it fails to handle exceptional conditions.
Exploiting this issue allows remote attackers to cause the application to crash, effectively denying service to legitimate users.
This issue affects Yate 1.1.0 and prior versions.
Yate is prone to a remote denial-of-service vulnerability because it fails to handle exceptional conditions.
Exploiting this issue allows remote attackers to cause the application to crash, effectively denying service to legitimate users.
This issue affects Yate 1.1.0 and prior versions.
Exploit / POC
Yate SIP Protocol Denial of Service Vulnerability
To exploit this issue, attackers may use readily available network utilities.
To exploit this issue, attackers may use readily available network utilities.
Solution / Fix
Yate SIP Protocol Denial of Service Vulnerability
Solution:
The vendor released an update to address this issue. Please see the references for more information.
Solution:
The vendor released an update to address this issue. Please see the references for more information.
References
Yate SIP Protocol Denial of Service Vulnerability
References:
References:
- Yate Homepage (Null Team )
- Yate Version 1.2.0 Changelog ()