Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

Asterisk PBX SIP Service Guest Access Enabled

Severity

Low

Family

General

CVSSv2 Base

3.5

CVSSv2 Vector

AV:N/AC:M/Au:S/C:N/I:P/A:N

Solution Type

Mitigation

Created

15 years ago

Modified

5 years ago

Asterisk PBX SIP service guest access is enabled. Description : Asterisk an open-source PBX is installed on the remote system. The SIP service is accepting SIP peers to use the proxy server as guest users. Unauthenticated users can use the proxy without supplying the required 'more secure' authentication. Guest access is enabled by default if 'allowguest=no' is not set in 'sip.conf'. Guest peers use the context defined under the general section and the restrictions set in the Asterisk config files.

Solution

If guest access is not needed, disable it by setting 'allowguest=no' in the sip.conf file.

References

http://www.voip-info.org/wiki/index.php?page=Asterisk+sip+allowguest

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

Asterisk PBX SIP Service Guest Access Enabled

Information

Severity

Severity

Family

Family

CVSSv2 Base

CVSSv2 Base

CVSSv2 Vector

CVSSv2 Vector

Solution Type

Solution Type

Created

Created

Modified

Modified

Share

Summary

Solution

Solution

References