CVE-2020-28361

Name of the Vulnerable Software and Affected Versions Kamailio versions prior to 5.4.0 Sippy Softswitch versions 4.5 through 5.2

Description The issue allows a bypass of a header-removal protection mechanism via whitespace characters. This occurs in the remove hf function in the Kamailio textops module. A skilled attacker with a valid credential in the system may disrupt internal call start/duration accounting mechanisms, potentially leading to a loss of revenue.

Recommendations For Kamailio versions prior to 5.4.0, update to version 5.4.0 or later to resolve the issue. For Sippy Softswitch versions 4.5 through 5.2, consider disabling the remove hf function in the Kamailio textops module as a temporary workaround until a patch is available.