Asterisk Malformed MIME Body Remote Denial of Service Vulnerability

Bugtraq ID:	25438
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2007-4521
Remote:	Yes
Local:	No
Published:	Aug 24 2007 12:00AM
Updated:	Aug 31 2007 10:42PM
Credit:	Kevin Stewart is credited with the discovery of this vulnerability.
Vulnerable:	Asterisk Asterisk 1.4.11 Asterisk Asterisk 1.4.10 Asterisk Asterisk 1.4.9 Asterisk Asterisk 1.4.8 Asterisk Asterisk 1.4.7 Asterisk Asterisk 1.4.6 Asterisk Asterisk 1.4.5
Not Vulnerable:	Asterisk Asterisk 1.4.12

Asterisk Malformed MIME Body Remote Denial of Service Vulnerability

Asterisk is prone to a remote denial-of-service vulnerability because the application fails to properly handle specially crafted emails.

Exploiting this issue allows remote attackers to cause the application to crash, effectively denying service to legitimate users.

This issue affects Asterisk 1.4.5 to 1.4.11.

Asterisk Malformed MIME Body Remote Denial of Service Vulnerability

Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].

Asterisk Malformed MIME Body Remote Denial of Service Vulnerability

Solution:
The vendor released a patch to address this issue. The vendor states that this issue will also be addressed in Asterisk 1.4.12 when it becomes available. Please see the references for more information.


Asterisk Asterisk 1.4.10

• Asterisk app_voicemail.c
  http://svn.digium.com/view/asterisk/branches/1.4/apps/app_voicemail.c? view=diff&rev=80750&r1=80749&r2=80750

Asterisk Asterisk 1.4.11

• Asterisk app_voicemail.c
  http://svn.digium.com/view/asterisk/branches/1.4/apps/app_voicemail.c? view=diff&rev=80750&r1=80749&r2=80750

Asterisk Asterisk 1.4.5

• Asterisk app_voicemail.c
  http://svn.digium.com/view/asterisk/branches/1.4/apps/app_voicemail.c? view=diff&rev=80750&r1=80749&r2=80750

Asterisk Asterisk 1.4.6

• Asterisk app_voicemail.c
  http://svn.digium.com/view/asterisk/branches/1.4/apps/app_voicemail.c? view=diff&rev=80750&r1=80749&r2=80750

Asterisk Asterisk 1.4.7

• Asterisk app_voicemail.c
  http://svn.digium.com/view/asterisk/branches/1.4/apps/app_voicemail.c? view=diff&rev=80750&r1=80749&r2=80750

Asterisk Asterisk 1.4.8

• Asterisk app_voicemail.c
  http://svn.digium.com/view/asterisk/branches/1.4/apps/app_voicemail.c? view=diff&rev=80750&r1=80749&r2=80750

Asterisk Asterisk 1.4.9

• Asterisk app_voicemail.c
  http://svn.digium.com/view/asterisk/branches/1.4/apps/app_voicemail.c? view=diff&rev=80750&r1=80749&r2=80750

Asterisk Malformed MIME Body Remote Denial of Service Vulnerability

References:

• Asterisk Homepage (Asterisk)
  
• AST-2007-021: Crash from invalid/corrupted MIME bodies when using voicemail with ([email protected])