Vulnerability CVE-2017-17090

Vulnerability CVE-2017-17090

Published: 2017-12-01 Modified: 2017-12-02

Description:

	Topic	Author	Date
High	Asterisk 13.17.2 chan_skinny Remote Memory Corruption	Juan Sacco	08.02.2018

Type:

(Incomplete Cleanup)

CVSS Base Score	Impact Subscore	Exploitability Subscore
5/10	2.9/10	10/10

Affected software
Digium -> Asterisk
Digium -> Certified asterisk

http://downloads.digium.com/pub/security/AST-2017-013.html

http://www.securityfocus.com/bid/102023

http://www.securitytracker.com/id/1039948

https://issues.asterisk.org/jira/browse/ASTERISK-27452

https://lists.debian.org/debian-lts-announce/2017/12/msg00028.html

https://www.debian.org/security/2017/dsa-4076

https://www.exploit-db.com/exploits/43992/