CVE-2011-1174

Name of the Vulnerable Software and Affected Versions Asterisk Open Source versions 1.6.1.x through 1.6.1.23 Asterisk Open Source versions 1.6.2.x through 1.6.2.17.1 Asterisk Open Source versions 1.8.x through 1.8.3.1

Description The issue allows remote attackers to cause a denial of service, consuming CPU and memory resources via a series of manager sessions involving invalid data.

Recommendations For Asterisk Open Source versions 1.6.1.x through 1.6.1.23, update to version 1.6.1.24 or later. For Asterisk Open Source versions 1.6.2.x through 1.6.2.17.1, update to version 1.6.2.17.2 or later. For Asterisk Open Source versions 1.8.x through 1.8.3.1, update to version 1.8.3.2 or later.