Alfred Farrugia

5 exploits Active since Feb 2018
CVE-2018-7286 EXPLOITDB MEDIUM python WORKING POC
Asterisk 13.x-13.19.1, 14.x<14.7.5, 15.x-15.2.1, Certified Asterisk <13.18 - DoS via SIP INVITE
An issue was discovered in Asterisk through 13.19.1, 14.x through 14.7.5, and 15.x through 15.2.1, and Certified Asterisk through 13.18-cert2. res_pjsip allows remote authenticated users to crash Asterisk (segmentation fault) by sending a number of SIP INVITE messages on a TCP or TLS connection and then suddenly closing the connection.
CVSS 6.5
EIP-2026-102561 EXPLOITDB python WORKING POC
Asterisk chan_pjsip 15.2.0 - 'SDP fmtp' Denial of Service
EIP-2026-102562 EXPLOITDB python WORKING POC
Asterisk chan_pjsip 15.2.0 - 'SDP' Denial of Service
CVE-2018-7284 EXPLOITDB HIGH python WORKING POC
Asterisk Buffer Overflow via SUBSCRIBE Request Accept Headers
A Buffer Overflow issue was discovered in Asterisk through 13.19.1, 14.x through 14.7.5, and 15.x through 15.2.1, and Certified Asterisk through 13.18-cert2. When processing a SUBSCRIBE request, the res_pjsip_pubsub module stores the accepted formats present in the Accept headers of the request. This code did not limit the number of headers it processed, despite having a fixed limit of 32. If more than 32 Accept headers were present, the code would write outside of its memory and cause a crash.
CVSS 7.5
EIP-2026-102623 EXPLOITDB python WORKING POC
Kamailio 5.1.1 / 5.1.0 / 5.0.0 - Off-by-One Heap Overflow