Asterisk : Security Vulnerabilities, CVEs, Published In 2013 (Code Execution) CVSS score >= 5
Stack-based buffer overflow in res/res_format_attr_h264.c in Asterisk Open Source 11.x before 11.2.2 allows remote attackers to execute arbitrary code via a long sprop-parameter-sets H.264 media attribute in a SIP Session Description Protocol (SDP) header.
Max CVSS
7.5
EPSS Score
43.34%
Published
2013-04-01
Updated
2013-04-02
1 vulnerabilities found