Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Asterisk PBX SIP Service Guest Access Enabled
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
Asterisk PBX SIP service guest access is enabled. Description : Asterisk an open-source PBX is installed on the remote system. The SIP service is accepting SIP peers to use the proxy server as guest users. Unauthenticated users can use the proxy without supplying the required 'more secure' authentication. Guest access is enabled by default if 'allowguest=no' is not set in 'sip.conf'. Guest peers use the context defined under the general section and the restrictions set in the Asterisk config files.
Solution
Solution
If guest access is not needed, disable it by setting 'allowguest=no' in the sip.conf file.