Home / os / wince

Asterisk 20.1.0 Denial Of Service

Posted on 15 December 2023

When handling DTLS-SRTP for media setup, Asterisk version 20.1.0 is susceptible to denial of service due to a race condition in the hello handshake phase of the DTLS protocol. This attack can be done continuously, thus denying new DTLS-SRTP encrypted calls during the attack.

 

TOP