Asterisk is a software for PBX systems that runs on Linux and supports IP calls using SIP, IAX, and H323 protocols. Asterisk suffers from a buffer overflow vulnerability, which stems from the “update” function of the PJSIP_HEADER dialplan function that may exceed the available buffer space for storing the new value of the header, which can be exploited by an attacker to potentially overwrite memory or cause a crash.