CVE: CVE-2009-2726

Export to Word

The SIP channel driver in Asterisk Open Source 1.2.x before 1.2.34, 1.4.x before 1.4.26.1, 1.6.0.x before 1.6.0.12, and 1.6.1.x before 1.6.1.4; Asterisk Business Edition A.x.x, B.x.x before B.2.5.9, C.2.x before C.2.4.1, and C.3.x before C.3.1; and Asterisk Appliance s800i 1.2.x before 1.3.0.3 does not use a maximum width when invoking sscanf style functions, which allows remote attackers to cause a denial of service (stack memory consumption) via SIP packets containing large sequences of ASCII decimal characters, as demonstrated via vectors related to (1) the CSeq value in a SIP header, (2) large Content-Length value, and (3) SDP.

Threat-Mapped Scoring

Score: 1.9

Priority: P3 - Important (Medium)

S9 – Sabotage of System/App
S10 – Denial of Service (+0.1 bonus)

EPSS

Score: 0.3069
Percentile: 0.96508

CVSS Scoring

CVSS v2 Score: 7.8

Severity:

Mapped CWE(s)

CWE-770 : Allocation of Resources Without Limits or Throttling

All CAPEC(s)

CAPEC-125: Flooding
CAPEC-130: Excessive Allocation
CAPEC-147: XML Ping of the Death
CAPEC-197: Exponential Data Expansion
CAPEC-229: Serialized Data Parameter Blowup
CAPEC-230: Serialized Data with Nested Payloads
CAPEC-231: Oversized Serialized Data Payloads
CAPEC-469: HTTP DoS
CAPEC-482: TCP Flood
CAPEC-486: UDP Flood
CAPEC-487: ICMP Flood
CAPEC-488: HTTP Flood
CAPEC-489: SSL Flood
CAPEC-490: Amplification
CAPEC-491: Quadratic Data Expansion
CAPEC-493: SOAP Array Blowup
CAPEC-494: TCP Fragmentation
CAPEC-495: UDP Fragmentation
CAPEC-496: ICMP Fragmentation
CAPEC-528: XML Flood

CAPEC(s) with Mapped TTPs

CAPEC-125: Flooding
Mapped TTPs:
- T1498.001 : Direct Network Flood
- T1499 : Endpoint Denial of Service
CAPEC-130: Excessive Allocation
Mapped TTPs:
- T1499.003 : Application Exhaustion Flood
CAPEC-469: HTTP DoS
Mapped TTPs:
- T1499.002 : Service Exhaustion Flood
CAPEC-482: TCP Flood
Mapped TTPs:
- T1498.001 : Direct Network Flood
- T1499.001 : OS Exhaustion Flood
- T1499.002 : Service Exhaustion Flood
CAPEC-488: HTTP Flood
Mapped TTPs:
- T1499.002 : Service Exhaustion Flood
CAPEC-489: SSL Flood
Mapped TTPs:
- T1499.002 : Service Exhaustion Flood
CAPEC-490: Amplification
Mapped TTPs:
- T1498.002 : Reflection Amplification
CAPEC-528: XML Flood
Mapped TTPs:
- T1499.002 : Service Exhaustion Flood
- T1498.001 : Direct Network Flood

Mapped ATT&CK TTPs

T1498.001 : Direct Network Flood
Kill Chain: impact
T1499 : Endpoint Denial of Service
Kill Chain: impact
T1499.003 : Application Exhaustion Flood
Kill Chain: impact
T1499.002 : Service Exhaustion Flood
Kill Chain: impact
T1498.001 : Direct Network Flood
Kill Chain: impact
T1499.001 : OS Exhaustion Flood
Kill Chain: impact
T1499.002 : Service Exhaustion Flood
Kill Chain: impact
T1499.002 : Service Exhaustion Flood
Kill Chain: impact
T1499.002 : Service Exhaustion Flood
Kill Chain: impact
T1498.002 : Reflection Amplification
Kill Chain: impact
T1499.002 : Service Exhaustion Flood
Kill Chain: impact
T1498.001 : Direct Network Flood
Kill Chain: impact

Malware

APTs Threat Group Associations

Sandworm Team

Campaigns

Affected Products

cpe:2.3:a:digium:asterisk:*:*:business:*:*:*:*:*
cpe:2.3:a:digium:asterisk:*:*:business:*:*:*:*:*
cpe:2.3:a:digium:asterisk:*:*:business:*:*:*:*:*
cpe:2.3:o:digium:s800i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:a:digium:asterisk:*:*:*:*:*:*:*:*
cpe:2.3:a:digium:asterisk:*:*:*:*:*:*:*:*
cpe:2.3:a:digium:asterisk:*:*:*:*:*:*:*:*
cpe:2.3:a:digium:asterisk:*:*:*:*:*:*:*:*

← Back to Home