EPSS
Percentile
82.3%
asterisk is vulnerable to denial of service. A memory exhaustion can be triggered by sending malicious SCCP packets, causing an infinite loop and leading to memory exhaustion (by message logging in that loop).
downloads.asterisk.org/pub/security/AST-2017-004.txt
www.securityfocus.com/bid/98573
www.securitytracker.com/id/1038531
bugs.debian.org/863906
security-tracker.debian.org/tracker/CVE-2017-9358