Lucene search

K
cve[email protected]CVE-2011-1147
HistoryMar 15, 2011 - 5:55 p.m.

CVE-2011-1147

2011-03-1517:55:05
CWE-119
web.nvd.nist.gov
40
cve
2011
1147
buffer overflow
asterisk open source
security vulnerability
nvd

7.7 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.931 High

EPSS

Percentile

99.1%

Multiple stack-based and heap-based buffer overflows in the (1) decode_open_type and (2) udptl_rx_packet functions in main/udptl.c in Asterisk Open Source 1.4.x before 1.4.39.2, 1.6.1.x before 1.6.1.22, 1.6.2.x before 1.6.2.16.2, and 1.8 before 1.8.2.4; Business Edition C.x.x before C.3.6.3; AsteriskNOW 1.5; and s800i (Asterisk Appliance), when T.38 support is enabled, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted UDPTL packet.

Affected configurations

NVD
Node
digiumasteriskMatch1.4.0
OR
digiumasteriskMatch1.4.0beta1
OR
digiumasteriskMatch1.4.0beta2
OR
digiumasteriskMatch1.4.0beta3
OR
digiumasteriskMatch1.4.0beta4
OR
digiumasteriskMatch1.4.1
OR
digiumasteriskMatch1.4.2
OR
digiumasteriskMatch1.4.3
OR
digiumasteriskMatch1.4.10
OR
digiumasteriskMatch1.4.10.1
OR
digiumasteriskMatch1.4.11
OR
digiumasteriskMatch1.4.12
OR
digiumasteriskMatch1.4.12.1
OR
digiumasteriskMatch1.4.13
OR
digiumasteriskMatch1.4.14
OR
digiumasteriskMatch1.4.15
OR
digiumasteriskMatch1.4.16
OR
digiumasteriskMatch1.4.16.1
OR
digiumasteriskMatch1.4.16.2
OR
digiumasteriskMatch1.4.17
OR
digiumasteriskMatch1.4.18
OR
digiumasteriskMatch1.4.19
OR
digiumasteriskMatch1.4.19rc1
OR
digiumasteriskMatch1.4.19rc2
OR
digiumasteriskMatch1.4.19rc3
OR
digiumasteriskMatch1.4.19rc4
OR
digiumasteriskMatch1.4.19.1
OR
digiumasteriskMatch1.4.19.2
OR
digiumasteriskMatch1.4.20
OR
digiumasteriskMatch1.4.20rc1
OR
digiumasteriskMatch1.4.20rc2
OR
digiumasteriskMatch1.4.20rc3
OR
digiumasteriskMatch1.4.20.1
OR
digiumasteriskMatch1.4.21
OR
digiumasteriskMatch1.4.21rc1
OR
digiumasteriskMatch1.4.21rc2
OR
digiumasteriskMatch1.4.21.1
OR
digiumasteriskMatch1.4.21.2
OR
digiumasteriskMatch1.4.22
OR
digiumasteriskMatch1.4.22rc1
OR
digiumasteriskMatch1.4.22rc2
OR
digiumasteriskMatch1.4.22rc3
OR
digiumasteriskMatch1.4.22rc4
OR
digiumasteriskMatch1.4.22rc5
OR
digiumasteriskMatch1.4.22.1
OR
digiumasteriskMatch1.4.22.2
OR
digiumasteriskMatch1.4.23
OR
digiumasteriskMatch1.4.23rc1
OR
digiumasteriskMatch1.4.23rc2
OR
digiumasteriskMatch1.4.23rc3
OR
digiumasteriskMatch1.4.23rc4
OR
digiumasteriskMatch1.4.23.1
OR
digiumasteriskMatch1.4.23.2
OR
digiumasteriskMatch1.4.24
OR
digiumasteriskMatch1.4.24rc1
OR
digiumasteriskMatch1.4.24.1
OR
digiumasteriskMatch1.4.25
OR
digiumasteriskMatch1.4.25rc1
OR
digiumasteriskMatch1.4.25.1
OR
digiumasteriskMatch1.4.26
OR
digiumasteriskMatch1.4.26rc1
OR
digiumasteriskMatch1.4.26rc2
OR
digiumasteriskMatch1.4.26rc3
OR
digiumasteriskMatch1.4.26rc4
OR
digiumasteriskMatch1.4.26rc5
OR
digiumasteriskMatch1.4.26rc6
OR
digiumasteriskMatch1.4.26.1
OR
digiumasteriskMatch1.4.26.2
OR
digiumasteriskMatch1.4.26.3
OR
digiumasteriskMatch1.4.27
OR
digiumasteriskMatch1.4.27rc1
OR
digiumasteriskMatch1.4.27rc2
OR
digiumasteriskMatch1.4.27rc3
OR
digiumasteriskMatch1.4.27rc4
OR
digiumasteriskMatch1.4.27rc5
OR
digiumasteriskMatch1.4.27.1
OR
digiumasteriskMatch1.4.28
OR
digiumasteriskMatch1.4.28rc1
OR
digiumasteriskMatch1.4.29
OR
digiumasteriskMatch1.4.29rc1
OR
digiumasteriskMatch1.4.29.1
OR
digiumasteriskMatch1.4.30
OR
digiumasteriskMatch1.4.30rc2
OR
digiumasteriskMatch1.4.30rc3
OR
digiumasteriskMatch1.4.31
OR
digiumasteriskMatch1.4.31rc1
OR
digiumasteriskMatch1.4.31rc2
OR
digiumasteriskMatch1.4.32
OR
digiumasteriskMatch1.4.32rc1
OR
digiumasteriskMatch1.4.33
OR
digiumasteriskMatch1.4.33rc1
OR
digiumasteriskMatch1.4.33rc2
OR
digiumasteriskMatch1.4.33.1
OR
digiumasteriskMatch1.4.34
OR
digiumasteriskMatch1.4.34rc1
OR
digiumasteriskMatch1.4.34rc2
OR
digiumasteriskMatch1.4.35
OR
digiumasteriskMatch1.4.35rc1
OR
digiumasteriskMatch1.4.36
OR
digiumasteriskMatch1.4.36rc1
OR
digiumasteriskMatch1.4.37
OR
digiumasteriskMatch1.4.37rc1
OR
digiumasteriskMatch1.4.38
OR
digiumasteriskMatch1.4.38rc1
OR
digiumasteriskMatch1.4.39
OR
digiumasteriskMatch1.4.39rc1
OR
digiumasteriskMatch1.4.39.1
Node
digiumasteriskMatch1.6.2.0
OR
digiumasteriskMatch1.6.2.0rc2
OR
digiumasteriskMatch1.6.2.0rc3
OR
digiumasteriskMatch1.6.2.0rc4
OR
digiumasteriskMatch1.6.2.0rc5
OR
digiumasteriskMatch1.6.2.0rc6
OR
digiumasteriskMatch1.6.2.0rc7
OR
digiumasteriskMatch1.6.2.0rc8
OR
digiumasteriskMatch1.6.2.1
OR
digiumasteriskMatch1.6.2.1rc1
OR
digiumasteriskMatch1.6.2.2
OR
digiumasteriskMatch1.6.2.3rc2
OR
digiumasteriskMatch1.6.2.4
OR
digiumasteriskMatch1.6.2.5
OR
digiumasteriskMatch1.6.2.6
OR
digiumasteriskMatch1.6.2.6rc1
OR
digiumasteriskMatch1.6.2.6rc2
OR
digiumasteriskMatch1.6.2.15rc1
OR
digiumasteriskMatch1.6.2.16
OR
digiumasteriskMatch1.6.2.16rc1
OR
digiumasteriskMatch1.6.2.16.1
Node
digiumasteriskMatch1.8.0
OR
digiumasteriskMatch1.8.0beta1
OR
digiumasteriskMatch1.8.0beta2
OR
digiumasteriskMatch1.8.0beta3
OR
digiumasteriskMatch1.8.0beta4
OR
digiumasteriskMatch1.8.0beta5
OR
digiumasteriskMatch1.8.0rc2
OR
digiumasteriskMatch1.8.0rc3
OR
digiumasteriskMatch1.8.0rc4
OR
digiumasteriskMatch1.8.0rc5
OR
digiumasteriskMatch1.8.1
OR
digiumasteriskMatch1.8.1rc1
OR
digiumasteriskMatch1.8.1.1
OR
digiumasteriskMatch1.8.1.2
OR
digiumasteriskMatch1.8.2
OR
digiumasteriskMatch1.8.2.1
OR
digiumasteriskMatch1.8.2.2
OR
digiumasteriskMatch1.8.2.3
Node
digiumasteriskMatchc.1.0beta7business
OR
digiumasteriskMatchc.1.0beta8business
OR
digiumasteriskMatchc.1.6-business
OR
digiumasteriskMatchc.1.6.1-business
OR
digiumasteriskMatchc.1.6.2-business
OR
digiumasteriskMatchc.1.8.0-business
OR
digiumasteriskMatchc.1.8.1-business
OR
digiumasteriskMatchc.2.3-business
OR
digiumasteriskMatchc.3.0-business
OR
digiumasteriskMatchc.3.1.0-business
OR
digiumasteriskMatchc.3.1.1-business
OR
digiumasteriskMatchc.3.2.2-business
OR
digiumasteriskMatchc.3.2.3-business
OR
digiumasteriskMatchc.3.3.2-business
OR
digiumasteriskMatchc.3.6.2-business
Node
digiumasterisknowMatch1.5
OR
digiums800i
Node
digiumasteriskMatch1.6.1.0
OR
digiumasteriskMatch1.6.1.0rc2
OR
digiumasteriskMatch1.6.1.0rc3
OR
digiumasteriskMatch1.6.1.0rc4
OR
digiumasteriskMatch1.6.1.0rc5
OR
digiumasteriskMatch1.6.1.1
OR
digiumasteriskMatch1.6.1.2
OR
digiumasteriskMatch1.6.1.3rc1
OR
digiumasteriskMatch1.6.1.4
OR
digiumasteriskMatch1.6.1.5
OR
digiumasteriskMatch1.6.1.5rc1
OR
digiumasteriskMatch1.6.1.6
OR
digiumasteriskMatch1.6.1.7rc1
OR
digiumasteriskMatch1.6.1.7rc2
OR
digiumasteriskMatch1.6.1.8
OR
digiumasteriskMatch1.6.1.9
OR
digiumasteriskMatch1.6.1.10
OR
digiumasteriskMatch1.6.1.10rc1
OR
digiumasteriskMatch1.6.1.10rc2
OR
digiumasteriskMatch1.6.1.10rc3
OR
digiumasteriskMatch1.6.1.11
OR
digiumasteriskMatch1.6.1.12
OR
digiumasteriskMatch1.6.1.12rc1
OR
digiumasteriskMatch1.6.1.13
OR
digiumasteriskMatch1.6.1.13rc1
OR
digiumasteriskMatch1.6.1.14
OR
digiumasteriskMatch1.6.1.15rc2
OR
digiumasteriskMatch1.6.1.16
OR
digiumasteriskMatch1.6.1.17
OR
digiumasteriskMatch1.6.1.18
OR
digiumasteriskMatch1.6.1.18rc1
OR
digiumasteriskMatch1.6.1.18rc2
OR
digiumasteriskMatch1.6.1.19
OR
digiumasteriskMatch1.6.1.19rc1
OR
digiumasteriskMatch1.6.1.19rc2
OR
digiumasteriskMatch1.6.1.19rc3
OR
digiumasteriskMatch1.6.1.20
OR
digiumasteriskMatch1.6.1.20rc1
OR
digiumasteriskMatch1.6.1.20rc2
OR
digiumasteriskMatch1.6.1.21

7.7 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.931 High

EPSS

Percentile

99.1%