Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2007-1594
HistoryMar 22, 2007 - 11:19 p.m.

CVE-2007-1594

2007-03-2223:19:00
[email protected]
web.nvd.nist.gov
23
asterisk
sip
cve-2007-1594
denial of service
security vulnerability

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.4 Medium

AI Score

Confidence

Low

0.934 High

EPSS

Percentile

99.1%

JSON

The handle_response function in chan_sip.c in Asterisk before 1.2.17 and 1.4.x before 1.4.2 allows remote attackers to cause a denial of service (crash) via a SIP Response code 0 in a SIP packet.

Affected configurations

NVD
Node
asteriskasteriskMatch0.1.7
OR
asteriskasteriskMatch0.1.8
OR
asteriskasteriskMatch0.1.9
OR
asteriskasteriskMatch0.1.9_1
OR
asteriskasteriskMatch0.1.11
OR
asteriskasteriskMatch0.2
OR
asteriskasteriskMatch0.3
OR
asteriskasteriskMatch0.4
OR
asteriskasteriskMatch0.7.0
OR
asteriskasteriskMatch0.7.1
OR
asteriskasteriskMatch0.7.2
OR
asteriskasteriskMatch0.9.0
OR
asteriskasteriskMatch1.0
OR
asteriskasteriskMatch1.0.6
OR
asteriskasteriskMatch1.0.7
OR
asteriskasteriskMatch1.0.8
OR
asteriskasteriskMatch1.0.9
OR
asteriskasteriskMatch1.0.10
OR
asteriskasteriskMatch1.0.11
OR
asteriskasteriskMatch1.0.12
OR
asteriskasteriskMatch1.2.0_beta1
OR
asteriskasteriskMatch1.2.0_beta2
OR
asteriskasteriskMatch1.2.5
OR
asteriskasteriskMatch1.2.6
OR
asteriskasteriskMatch1.2.7
OR
asteriskasteriskMatch1.2.8
OR
asteriskasteriskMatch1.2.9
OR
asteriskasteriskMatch1.2.10
OR
asteriskasteriskMatch1.2.11
OR
asteriskasteriskMatch1.2.12
OR
asteriskasteriskMatch1.2.13
OR
asteriskasteriskMatch1.2.14
OR
asteriskasteriskMatch1.2.15
OR
asteriskasteriskMatch1.2.16
OR
asteriskasteriskMatch1.2.17
OR
asteriskasteriskMatch1.4.1
OR
asteriskasteriskMatch1.4_beta

Related

checkpoint_advisories 3
prion 1
nvd 1
ubuntucve 1
cvelist 1
openvas 3
gentoo 1
nessus 2
securityvulns 1
suse 1
checkpoint_advisories
checkpoint_advisories
Preemptive Protection against Digium Asterisk SIP Invalid Response Code Denial of Service Vulnerability
2007-07-10 00:00:00
Digium Asterisk SIP Invalid Response Code Denial of Service (CVE-2007-1594)
2009-10-18 00:00:00
IPS-1 Protection Updates for Vulnerabilities in Microsoft Windows and Asterisk and IPS-1 Protocol and Protocol Subsystems Updates
2008-02-01 00:00:00
prion
prion
Code injection
2007-03-22 23:19:00
nvd
nvd
CVE-2007-1594
2007-03-22 23:19:00
ubuntucve
ubuntucve
CVE-2007-1594
2007-03-22 00:00:00
cvelist
cvelist
CVE-2007-1594
2007-03-22 23:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200704-01 (asterisk)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200704-01 (asterisk)
2008-09-24 00:00:00
SuSE Update for asterisk SUSE-SA:2007:034
2009-01-28 00:00:00
gentoo
gentoo
Asterisk: Two SIP Denial of Service vulnerabilities
2007-04-02 00:00:00
nessus
nessus
GLSA-200704-01 : Asterisk: Two SIP Denial of Service vulnerabilities
2007-04-05 00:00:00
openSUSE 10 Security Update : asterisk (asterisk-3543)
2007-10-17 00:00:00
securityvulns
securityvulns
Asterisk PBX SIP DoS
2007-03-22 00:00:00
suse
suse
remote denial of service in asterisk
2007-06-06 17:11:13

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.4 Medium

AI Score

Confidence

Low

0.934 High

EPSS

Percentile

99.1%

JSON
Related for CVE-2007-1594
checkpoint_advisories3prion1nvd1ubuntucve1cvelist1openvas3gentoo1nessus2securityvulns1suse1