Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2008-3264
HistoryJul 24, 2008 - 3:41 p.m.

CVE-2008-3264

2008-07-2415:41:00
CWE-287
[email protected]
web.nvd.nist.gov
37
asterisk
open source
firmware
denial of service
iax2
security vulnerability

6.4 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.079 Low

EPSS

Percentile

94.2%

JSON

The FWDOWNL firmware-download implementation in Asterisk Open Source 1.0.x, 1.2.x before 1.2.30, and 1.4.x before 1.4.21.2; Business Edition A.x.x, B.x.x before B.2.5.4, and C.x.x before C.1.10.3; AsteriskNOW; Appliance Developer Kit 0.x.x; and s800i 1.0.x before 1.2.0.1 allows remote attackers to cause a denial of service (traffic amplification) via an IAX2 FWDOWNL request.

CPENameOperatorVersion
asterisk:asterisk_appliance_developer_kitasterisk asterisk appliance developer kiteq0.2
asterisk:asterisk_appliance_developer_kitasterisk asterisk appliance developer kiteq0.3
asterisk:asterisk_appliance_developer_kitasterisk asterisk appliance developer kiteq0.4
asterisk:asterisk_appliance_developer_kitasterisk asterisk appliance developer kiteq0.5
asterisk:asterisk_appliance_developer_kitasterisk asterisk appliance developer kiteq0.6
asterisk:asterisk_appliance_developer_kitasterisk asterisk appliance developer kiteq0.6.0
asterisk:asterisk_appliance_developer_kitasterisk asterisk appliance developer kiteq0.7
asterisk:asterisk_appliance_developer_kitasterisk asterisk appliance developer kiteq0.8
asterisk:asterisk_business_editionasterisk asterisk business editioneqa
asterisk:asterisk_business_editionasterisk asterisk business editioneqb
Rows per page:
1-10 of 1181

Related

nessus 5
seebug 1
ubuntucve 1
debiancve 1
prion 1
openvas 6
fedora 2
securityvulns 1
gentoo 1
nessus
nessus
Asterisk IAX2 FWDOWNL Request Spoofing Remote DoS
2008-07-24 00:00:00
Fedora 8 : asterisk-1.4.21.2-1.fc8 (2008-6676)
2008-07-24 00:00:00
Fedora 9 : asterisk-1.6.0-0.19.beta9.fc9 (2008-6853)
2008-07-31 00:00:00
seebug
seebug
Asterisk IAX2固仢升级ζŠ₯ζ–‡ζ”Ύε€§θΏœη¨‹ζ‹’η»ζœεŠ‘ζΌζ΄ž
2008-07-25 00:00:00
ubuntucve
ubuntucve
CVE-2008-3264
2008-07-24 00:00:00
debiancve
debiancve
CVE-2008-3264
2008-07-24 15:41:00
prion
prion
Server side request forgery (ssrf)
2008-07-24 15:41:00
openvas
openvas
Fedora Update for asterisk FEDORA-2008-6853
2009-02-17 00:00:00
Fedora Update for asterisk FEDORA-2008-6676
2009-02-17 00:00:00
Fedora Update for asterisk FEDORA-2008-6853
2009-02-17 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: asterisk-1.4.21.2-1.fc8
2008-07-24 02:11:44
[SECURITY] Fedora 9 Update: asterisk-1.6.0-0.19.beta9.fc9
2008-07-30 20:07:58
securityvulns
securityvulns
Asterisk multiple security vulnerabilities
2008-07-24 00:00:00
gentoo
gentoo
Asterisk: Multiple vulnerabilities
2009-05-02 00:00:00

6.4 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.079 Low

EPSS

Percentile

94.2%

JSON
Related for CVE-2008-3264
nessus5seebug1ubuntucve1debiancve1prion1openvas6fedora2securityvulns1gentoo1