7.8
CVE-2006-5445
- EPSS 3.37%
- Veröffentlicht 23.10.2006 17:07:00
- Zuletzt bearbeitet 16.06.2026 22:31:12
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Unspecified vulnerability in the SIP channel driver (channels/chan_sip.c) in Asterisk 1.2.x before 1.2.13 and 1.4.x before 1.4.0-beta3 allows remote attackers to cause a denial of service (resource consumption) via unspecified vectors that result in the creation of "a real pvt structure" that uses more resources than necessary.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.37% | 0.872 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 10 | 6.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:C
|
http://secunia.com/advisories/22651
http://www.gentoo.org/security/en/glsa/glsa-200610-15.xml
http://ftp.digium.com/pub/asterisk/releases/ChangeLog-1.2.13
http://secunia.com/advisories/22979
http://www.asterisk.org/node/109
http://www.novell.com/linux/security/advisories/2006_69_asterisk.html
http://www.securityfocus.com/archive/1/449183/100/0/threaded
http://www.asterisk.org/node/110
http://www.osvdb.org/29973
http://www.securityfocus.com/bid/20835
http://www.vupen.com/english/advisories/2006/4098
https://exchange.xforce.ibmcloud.com/vulnerabilities/29664