FreeBSD : asterisk -- multiple vulnerabilities (fd2bf3b5-1001-11e3-ba94-0025905a4771)

Language:

The remote FreeBSD host is missing one or more security-related updates.

The Asterisk project reports :

Remote Crash From Late Arriving SIP ACK With SDP

Remote Crash when Invalid SDP is sent in SIP Request

Update the affected packages.

Severity: Medium

ID: 69499

File Name: freebsd_pkg_fd2bf3b5100111e3ba940025905a4771.nasl

Version: 1.10

Type: local

Family: FreeBSD Local Security Checks

Published: 8/29/2013

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Factor: Low

Score: 3.6

Risk Factor: Medium

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

CPE: p-cpe:/a:freebsd:freebsd:asterisk10, p-cpe:/a:freebsd:freebsd:asterisk11, p-cpe:/a:freebsd:freebsd:asterisk18, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 8/28/2013

Vulnerability Publication Date: 8/27/2013

CVE: CVE-2013-5641, CVE-2013-5642