Lucene search

[email protected]CVE-2007-1306

HistoryMar 07, 2007 - 12:19 a.m.

CVE-2007-1306

2007-03-0700:19:00

[email protected]

web.nvd.nist.gov

asterisk

sip

cve-2007-1306

denial of service

vulnerability

nvd

6.2 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.951 High

EPSS

Percentile

99.3%

JSON

Asterisk 1.4 before 1.4.1 and 1.2 before 1.2.16 allows remote attackers to cause a denial of service (crash) by sending a Session Initiation Protocol (SIP) packet without a URI and SIP-version header, which results in a NULL pointer dereference.

Affected configurations

NVD

Node

digiumasteriskMatch1.2.0_beta1

digiumasteriskMatch1.2.0_beta2

digiumasteriskMatch1.2.6

digiumasteriskMatch1.2.7

digiumasteriskMatch1.2.8

digiumasteriskMatch1.2.9

digiumasteriskMatch1.2.10

digiumasteriskMatch1.2.11

digiumasteriskMatch1.2.12

digiumasteriskMatch1.2.12.1

digiumasteriskMatch1.2.13

digiumasteriskMatch1.2.14

digiumasteriskMatch1.2.15

digiumasteriskMatch1.2_beta1

digiumasteriskMatch1.2_beta2

digiumasteriskMatch1.4.0

digiumasteriskMatch1.4.0_beta1

digiumasteriskMatch1.4.0_beta2

CPENameOperatorVersion
digium:asteriskdigium asteriskeq1.2.0_beta1
digium:asteriskdigium asteriskeq1.2.0_beta2
digium:asteriskdigium asteriskeq1.2.6
digium:asteriskdigium asteriskeq1.2.7
digium:asteriskdigium asteriskeq1.2.8
digium:asteriskdigium asteriskeq1.2.9
digium:asteriskdigium asteriskeq1.2.10
digium:asteriskdigium asteriskeq1.2.11
digium:asteriskdigium asteriskeq1.2.12
digium:asteriskdigium asteriskeq1.2.12.1

CPE	Name	Operator	Version
digium:asterisk	digium asterisk	eq	1.2.0_beta1
digium:asterisk	digium asterisk	eq	1.2.0_beta2
digium:asterisk	digium asterisk	eq	1.2.6
digium:asterisk	digium asterisk	eq	1.2.7
digium:asterisk	digium asterisk	eq	1.2.8
digium:asterisk	digium asterisk	eq	1.2.9
digium:asterisk	digium asterisk	eq	1.2.10
digium:asterisk	digium asterisk	eq	1.2.11
digium:asterisk	digium asterisk	eq	1.2.12
digium:asterisk	digium asterisk	eq	1.2.12.1