CVE-2012-3553

Name of the Vulnerable Software and Affected Versions Asterisk Open Source versions prior to 10.5.1

Description The issue allows remote authenticated users to cause a denial of service, resulting in a daemon crash due to a NULL pointer dereference. This occurs when a Station Key Pad Button message is sent and a connection is closed in off-hook mode.

Recommendations For versions prior to 10.5.1, update to version 10.5.1 or later to resolve the issue.