Asterisk

Asterisk

33 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 1.78%
  • Veröffentlicht 22.08.2007 01:17:00
  • Zuletzt bearbeitet 16.06.2026 22:44:07

The SIP channel driver (chan_sip) in Asterisk Open Source 1.4.x before 1.4.11, AsteriskNOW before beta7, Asterisk Appliance Developer Kit 0.x before 0.8.0, and s800i (Asterisk Appliance) 1.x before 1.0.3 allows remote attackers to cause a denial of s...

  • EPSS 1.15%
  • Veröffentlicht 09.08.2007 21:17:00
  • Zuletzt bearbeitet 16.06.2026 22:43:44

The Skinny channel driver (chan_skinny) in Asterisk Open Source before 1.4.10, AsteriskNOW before beta7, Appliance Developer Kit before 0.7.0, and Appliance s800i before 1.0.3 allows remote authenticated users to cause a denial of service (applicatio...

  • EPSS 1.69%
  • Veröffentlicht 18.07.2007 17:30:00
  • Zuletzt bearbeitet 16.06.2026 22:42:41

The STUN implementation in Asterisk 1.4.x before 1.4.8, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote attackers to cause a denial of service (crash) via a crafted STUN length attribute in a STUN ...

  • EPSS 31.52%
  • Veröffentlicht 18.07.2007 17:30:00
  • Zuletzt bearbeitet 16.06.2026 22:42:41

The Skinny channel driver (chan_skinny) in Asterisk before 1.2.22 and 1.4.x before 1.4.8, Business Edition before B.2.2.1, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote attackers to cause a denia...

  • EPSS 26.56%
  • Veröffentlicht 18.07.2007 17:30:00
  • Zuletzt bearbeitet 16.06.2026 22:42:41

The IAX2 channel driver (chan_iax2) in Asterisk before 1.2.22 and 1.4.x before 1.4.8, Business Edition before B.2.2.1, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote attackers to cause a denial of...

  • EPSS 5.51%
  • Veröffentlicht 18.07.2007 17:30:00
  • Zuletzt bearbeitet 16.06.2026 22:42:41

Stack-based buffer overflow in the IAX2 channel driver (chan_iax2) in Asterisk before 1.2.22 and 1.4.x before 1.4.8, Business Edition before B.2.2.1, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote...

  • EPSS 4.32%
  • Veröffentlicht 07.05.2007 19:19:00
  • Zuletzt bearbeitet 16.06.2026 22:39:42

The IAX2 channel driver (chan_iax2) in Asterisk before 20070504 does not properly null terminate data, which allows remote attackers to trigger loss of transmitted data, and possibly obtain sensitive information (memory contents) or cause a denial of...

  • EPSS 2.39%
  • Veröffentlicht 26.04.2007 20:19:00
  • Zuletzt bearbeitet 16.06.2026 22:39:19

The SIP channel driver (chan_sip) in Asterisk before 1.2.18 and 1.4.x before 1.4.3 does not properly parse SIP UDP packets that do not contain a valid response code, which allows remote attackers to cause a denial of service (crash).

  • EPSS 3.86%
  • Veröffentlicht 26.04.2007 20:19:00
  • Zuletzt bearbeitet 16.06.2026 22:39:18

The Manager Interface in Asterisk before 1.2.18 and 1.4.x before 1.4.3 allows remote attackers to cause a denial of service (crash) by using MD5 authentication to authenticate a user that does not have a password defined in manager.conf, resulting in...

Exploit
  • EPSS 23.88%
  • Veröffentlicht 26.04.2007 20:19:00
  • Zuletzt bearbeitet 16.06.2026 22:39:18

Multiple stack-based buffer overflows in the process_sdp function in chan_sip.c of the SIP channel T.38 SDP parser in Asterisk before 1.4.3 allow remote attackers to execute arbitrary code via a long (1) T38FaxRateManagement or (2) T38FaxUdpEC SDP pa...