Vulnerability Name:

CVE-2017-16672 (CCN-134652)

Assigned:2017-10-15
Published:2017-10-15
Updated:2019-10-03
Summary:An issue was discovered in Asterisk Open Source 13 before 13.18.1, 14 before 14.7.1, and 15 before 15.1.1 and Certified Asterisk 13.13 before 13.13-cert7. A memory leak occurs when an Asterisk pjsip session object is created and that call gets rejected before the session itself is fully established. When this happens the session object never gets destroyed. Eventually Asterisk can run out of memory and crash.
CVSS v3 Severity:5.9 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H)
5.2 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
Vulnerability Type:CWE-772
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2017-16672

Source: CCN
Type: Asterisk Project Security Advisory - AST-2017-011
Memory/File Descriptor/RTP leak in pjsip session resource

Source: CONFIRM
Type: Vendor Advisory
http://downloads.digium.com/pub/security/AST-2017-011.html

Source: BID
Type: Third Party Advisory, VDB Entry
101765

Source: CCN
Type: BID-101765
Multiple Asterisk Products Information Disclosure Vulnerability

Source: XF
Type: UNKNOWN
asterisk-cve201716672-dos(134652)

Source: CONFIRM
Type: Vendor Advisory
https://issues.asterisk.org/jira/browse/ASTERISK-27345

Source: GENTOO
Type: UNKNOWN
GLSA-201811-11

Source: DEBIAN
Type: UNKNOWN
DSA-4076

Vulnerable Configuration:Configuration 1:
  • cpe:/a:digium:asterisk:*:*:*:*:*:*:*:* (Version >= 13.0.0 and < 13.18.1)
  • OR cpe:/a:digium:asterisk:*:*:*:*:*:*:*:* (Version >= 14.0.0 and < 14.7.1)
  • OR cpe:/a:digium:asterisk:*:*:*:*:*:*:*:* (Version >= 15.0.0 and < 15.1.1)

    • Configuration 2:
  • cpe:/a:digium:certified_asterisk:13.13.0:*:*:*:*:*:*:*
  • OR cpe:/a:digium:certified_asterisk:13.13.0:cert1:*:*:*:*:*:*
  • OR cpe:/a:digium:certified_asterisk:13.13.0:cert1-rc1:*:*:*:*:*:*
  • OR cpe:/a:digium:certified_asterisk:13.13.0:cert1-rc2:*:*:*:*:*:*
  • OR cpe:/a:digium:certified_asterisk:13.13.0:cert1-rc3:*:*:*:*:*:*
  • OR cpe:/a:digium:certified_asterisk:13.13.0:cert1-rc4:*:*:*:*:*:*
  • OR cpe:/a:digium:certified_asterisk:13.13.0:cert2:*:*:*:*:*:*
  • OR cpe:/a:digium:certified_asterisk:13.13.0:cert3:*:*:*:*:*:*
  • OR cpe:/a:digium:certified_asterisk:13.13.0:cert4:*:*:*:*:*:*
  • OR cpe:/a:digium:certified_asterisk:13.13.0:cert5:*:*:*:*:*:*
  • OR cpe:/a:digium:certified_asterisk:13.13.0:cert6:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:com.ubuntu.xenial:def:2017166720000000
    V
    		CVE-2017-16672 on Ubuntu 16.04 LTS (xenial) - medium.
    2017-11-09
    oval:com.ubuntu.disco:def:2017166720000000
    V
    		CVE-2017-16672 on Ubuntu 19.04 (disco) - medium.
    2017-11-09
    oval:com.ubuntu.bionic:def:2017166720000000
    V
    		CVE-2017-16672 on Ubuntu 18.04 LTS (bionic) - medium.
    2017-11-09
    oval:com.ubuntu.artful:def:201716672000
    V
    		CVE-2017-16672 on Ubuntu 17.10 (artful) - medium.
    2017-11-08
    oval:com.ubuntu.xenial:def:201716672000
    V
    		CVE-2017-16672 on Ubuntu 16.04 LTS (xenial) - medium.
    2017-11-08
    oval:com.ubuntu.bionic:def:201716672000
    V
    		CVE-2017-16672 on Ubuntu 18.04 LTS (bionic) - medium.
    2017-11-08
    oval:com.ubuntu.cosmic:def:2017166720000000
    V
    		CVE-2017-16672 on Ubuntu 18.10 (cosmic) - medium.
    2017-11-08
    oval:com.ubuntu.cosmic:def:201716672000
    V
    		CVE-2017-16672 on Ubuntu 18.10 (cosmic) - medium.
    2017-11-08
    oval:com.ubuntu.trusty:def:201716672000
    V
    		CVE-2017-16672 on Ubuntu 14.04 LTS (trusty) - medium.
    2017-11-08
    BACK
    digium asterisk *
    digium asterisk *
    digium asterisk *
    digium certified asterisk 13.13.0
    digium certified asterisk 13.13.0 cert1
    digium certified asterisk 13.13.0 cert1-rc1
    digium certified asterisk 13.13.0 cert1-rc2
    digium certified asterisk 13.13.0 cert1-rc3
    digium certified asterisk 13.13.0 cert1-rc4
    digium certified asterisk 13.13.0 cert2
    digium certified asterisk 13.13.0 cert3
    digium certified asterisk 13.13.0 cert4
    digium certified asterisk 13.13.0 cert5
    digium certified asterisk 13.13.0 cert6