Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2006-1827
HistoryApr 18, 2006 - 8:02 p.m.

CVE-2006-1827

2006-04-1820:02:00
[email protected]
web.nvd.nist.gov
56
cve
asterisk
integer signedness error
buffer overflow
nvd

7.7 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.102 Low

EPSS

Percentile

95.0%

JSON

Integer signedness error in format_jpeg.c in Asterisk 1.2.6 and earlier allows remote attackers to execute arbitrary code via a length value that passes a length check as a negative number, but triggers a buffer overflow when it is used as an unsigned length.

Affected configurations

NVD
Node
digiumasteriskRange1.2.6
OR
digiumasteriskMatch0.1.0
OR
digiumasteriskMatch0.1.1
OR
digiumasteriskMatch0.1.2
OR
digiumasteriskMatch0.1.3
OR
digiumasteriskMatch0.1.4
OR
digiumasteriskMatch0.1.5
OR
digiumasteriskMatch0.1.6
OR
digiumasteriskMatch0.1.7
OR
digiumasteriskMatch0.1.8
OR
digiumasteriskMatch0.1.9
OR
digiumasteriskMatch0.1.9.1
OR
digiumasteriskMatch0.1.10
OR
digiumasteriskMatch0.1.11
OR
digiumasteriskMatch0.1.12
OR
digiumasteriskMatch0.2
OR
digiumasteriskMatch0.2.0
OR
digiumasteriskMatch0.3
OR
digiumasteriskMatch0.3.0
OR
digiumasteriskMatch0.4
OR
digiumasteriskMatch0.4.0
OR
digiumasteriskMatch0.5.0
OR
digiumasteriskMatch0.7.0
OR
digiumasteriskMatch0.7.1
OR
digiumasteriskMatch0.7.2
OR
digiumasteriskMatch1.0.0
OR
digiumasteriskMatch1.0.1
OR
digiumasteriskMatch1.0.2
OR
digiumasteriskMatch1.0.3
OR
digiumasteriskMatch1.0.4
OR
digiumasteriskMatch1.0.5
OR
digiumasteriskMatch1.0.6
OR
digiumasteriskMatch1.0.7
OR
digiumasteriskMatch1.0.8
OR
digiumasteriskMatch1.0.9
OR
digiumasteriskMatch1.0_rc1
OR
digiumasteriskMatch1.0_rc2
OR
digiumasteriskMatch1.2.0_beta1

Related

openvas 4
debiancve 1
nessus 2
nvd 1
ubuntucve 1
cvelist 1
prion 1
freebsd 1
debian 2
osv 1
openvas
openvas
FreeBSD Ports: asterisk
2008-09-04 00:00:00
FreeBSD Ports: asterisk
2008-09-04 00:00:00
Debian Security Advisory DSA 1048-1 (asterisk)
2008-01-17 00:00:00
debiancve
debiancve
CVE-2006-1827
2006-04-18 20:02:00
nessus
nessus
FreeBSD : asterisk -- denial of service vulnerability, local system access (8b683bea-d49c-11da-a672-000e0c2e438a)
2006-05-13 00:00:00
Debian DSA-1048-1 : asterisk - several vulnerabilities
2006-10-14 00:00:00
nvd
nvd
CVE-2006-1827
2006-04-18 20:02:00
ubuntucve
ubuntucve
CVE-2006-1827
2006-04-18 00:00:00
cvelist
cvelist
CVE-2006-1827
2006-04-18 20:00:00
prion
prion
Integer overflow
2006-04-18 20:02:00
freebsd
freebsd
asterisk -- denial of service vulnerability, local system access
2006-04-07 00:00:00
debian
debian
[SECURITY] [DSA 1048-1] New Asterisk packages fix arbitrary code execution
2006-05-01 04:37:52
[SECURITY] [DSA 1048-1] New Asterisk packages fix arbitrary code execution
2006-05-01 04:37:52
osv
osv
asterisk - several vulnerabilities
2006-05-01 00:00:00

7.7 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.102 Low

EPSS

Percentile

95.0%

JSON
Related for CVE-2006-1827
openvas4debiancve1nessus2nvd1ubuntucve1cvelist1prion1freebsd1debian2osv1