CVE-2008-5558

2008-12-1717:30:00

CWE-287

[email protected]

web.nvd.nist.gov

asterisk

open source

business edition

cve-2008-5558

denial of service

vulnerability

nvd

6.8 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.079 Low

EPSS

Percentile

94.2%

JSON

Asterisk Open Source 1.2.26 through 1.2.30.3 and Business Edition B.2.3.5 through B.2.5.5, when realtime IAX2 users are enabled, allows remote attackers to cause a denial of service (crash) via authentication attempts involving (1) an unknown user or (2) a user using hostname matching.

CPENameOperatorVersion
asterisk:asterisk_business_editionasterisk asterisk business editioneqb.2.3.5
asterisk:open_sourceasterisk open sourceeq1.2.30.2
asterisk:open_sourceasterisk open sourceeq1.2.27
asterisk:open_sourceasterisk open sourceeq1.2.26.2
asterisk:open_sourceasterisk open sourceeq1.2.26.1
asterisk:open_sourceasterisk open sourceeq1.2.26
asterisk:asterisk_business_editionasterisk asterisk business editioneqb.2.5.3
asterisk:asterisk_business_editionasterisk asterisk business editioneqb.2.5.0
asterisk:asterisk_business_editionasterisk asterisk business editioneqb.2.5.1
asterisk:open_sourceasterisk open sourceeq1.2.30

CPE	Name	Operator	Version
asterisk:asterisk_business_edition	asterisk asterisk business edition	eq	b.2.3.5
asterisk:open_source	asterisk open source	eq	1.2.30.2
asterisk:open_source	asterisk open source	eq	1.2.27
asterisk:open_source	asterisk open source	eq	1.2.26.2
asterisk:open_source	asterisk open source	eq	1.2.26.1
asterisk:open_source	asterisk open source	eq	1.2.26
asterisk:asterisk_business_edition	asterisk asterisk business edition	eq	b.2.5.3
asterisk:asterisk_business_edition	asterisk asterisk business edition	eq	b.2.5.0
asterisk:asterisk_business_edition	asterisk asterisk business edition	eq	b.2.5.1
asterisk:open_source	asterisk open source	eq	1.2.30