Network devices fail to restrict Q.931 information elements as part of Q.931 protocol requests. If malformed in an unspecified manner, such requests could allow attackers to cause denial of service (DoS) conditions or trigger buffer overflow conditions on affected hosts or applications. The Q.931 serves call-signaling duties and is included in the H.225 protocol, which is part of the larger H.323 real-time multimedia communications IP protocol.
An unauthenticated, remote attacker could exploit this issue to cause a crash of affected application or gain additional privileges.
Administrators are advised to restrict network access to affected devices.
Administrators are advised to employ network filtering devices to block malformed Q.931 requests.