|Number of vulnerabilities||1|
|CVE ID|| CVE-2017-17850
|CWE ID|| CWE-20
|Public exploit||Not available|
|Vulnerable software versions||
|Vendor URL||Digium (Linux Support Services)|
The vulnerability allows a remote authenticated attacker to cause DoS condition on the target system.
The vulnerability exists due to an error when processing malicious SIP data. A remote attacker can send specially crafted SIP data without a contact header, trigger an error in the PJSIP channel driver and cause the service to crash.
Successful exploitation of the vulnerability results in denial of service.
The vulnerability is addressed in the following version.