CVE-2012-0885

🗓️ 25 Jan 2012 15:00:00Reported by mitreType

Asterisk Open Source 1.8.x and 10.x before 1.8.8.2, 10.0.1 - NULL pointer dereference and daemon crash from crafted SDP message

Reporter	Title	Published	Views	Family All 13
Tenable Nessus	Asterisk SRTP Video Stream Negotiation Remote Crash (AST-2012-001)	22 Mar 201200:00	–	nessus
Tenable Nessus	GLSA-201202-06 : Asterisk: Denial of Service	23 Feb 201200:00	–	nessus
Cvelist	CVE-2012-0885	25 Jan 201215:00	–	cvelist
Debian CVE	CVE-2012-0885	25 Jan 201215:00	–	debiancve
EUVD	EUVD-2012-0908	7 Oct 202500:30	–	euvd
Gentoo Linux	Asterisk: Denial of service	22 Feb 201200:00	–	gentoo
NVD	CVE-2012-0885	25 Jan 201215:55	–	nvd
OpenVAS	FreeBSD Ports: asterisk18	12 Feb 201200:00	–	openvas
OpenVAS	Gentoo Security Advisory GLSA 201202-06 (asterisk)	12 Mar 201200:00	–	openvas
OpenVAS	Gentoo Security Advisory GLSA 201202-06 (asterisk)	12 Mar 201200:00	–	openvas

NVD

Node

asterisk open_sourceMatch1.8.0

asterisk open_sourceMatch1.8.0beta1

asterisk open_sourceMatch1.8.0beta2

asterisk open_sourceMatch1.8.0beta3

asterisk open_sourceMatch1.8.0beta4

asterisk open_sourceMatch1.8.0beta5

asterisk open_sourceMatch1.8.0rc2

asterisk open_sourceMatch1.8.0rc3

asterisk open_sourceMatch1.8.0rc4

asterisk open_sourceMatch1.8.0rc5

asterisk open_sourceMatch1.8.1

asterisk open_sourceMatch1.8.1rc1

asterisk open_sourceMatch1.8.1.1

asterisk open_sourceMatch1.8.1.2

asterisk open_sourceMatch1.8.2

asterisk open_sourceMatch1.8.2rc1

asterisk open_sourceMatch1.8.2.1

asterisk open_sourceMatch1.8.2.2

asterisk open_sourceMatch1.8.2.3

asterisk open_sourceMatch1.8.2.4

asterisk open_sourceMatch1.8.3

asterisk open_sourceMatch1.8.3rc1

asterisk open_sourceMatch1.8.3rc2

asterisk open_sourceMatch1.8.3rc3

asterisk open_sourceMatch1.8.3.1

asterisk open_sourceMatch1.8.3.2

asterisk open_sourceMatch1.8.3.3

asterisk open_sourceMatch1.8.4

asterisk open_sourceMatch1.8.4rc1

asterisk open_sourceMatch1.8.4rc2

asterisk open_sourceMatch1.8.4rc3

asterisk open_sourceMatch1.8.4.1

asterisk open_sourceMatch1.8.4.2

asterisk open_sourceMatch1.8.4.3

asterisk open_sourceMatch1.8.4.4

asterisk open_sourceMatch1.8.5rc1

asterisk open_sourceMatch1.8.5.0

asterisk open_sourceMatch1.8.6.0

asterisk open_sourceMatch1.8.6.0rc1

asterisk open_sourceMatch1.8.6.0rc2

asterisk open_sourceMatch1.8.6.0rc3

asterisk open_sourceMatch1.8.7.0

asterisk open_sourceMatch1.8.7.0rc1

asterisk open_sourceMatch1.8.7.0rc2

asterisk open_sourceMatch1.8.7.1

asterisk open_sourceMatch1.8.7.2

asterisk open_sourceMatch1.8.8.0

asterisk open_sourceMatch1.8.8.0rc1

asterisk open_sourceMatch1.8.8.0rc2

asterisk open_sourceMatch1.8.8.0rc3

asterisk open_sourceMatch1.8.8.0rc4

asterisk open_sourceMatch1.8.8.0rc5

asterisk open_sourceMatch1.8.8.1

Node

asterisk open_sourceMatch10.0.0

asterisk open_sourceMatch10.0.0beta1

asterisk open_sourceMatch10.0.0beta2

asterisk open_sourceMatch10.0.0rc1

asterisk open_sourceMatch10.0.0rc2

asterisk open_sourceMatch10.0.0rc3

Source	Link
issues	www.issues.asterisk.org/jira/browse/ASTERISK-19202
issues	www.issues.asterisk.org/jira/secure/attachment/42202/issueA19202_crypto_if_uninited_text_or_video.patch
openwall	www.openwall.com/lists/oss-security/2012/01/20/16
downloads	www.downloads.asterisk.org/pub/security/AST-2012-001.html
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
openwall	www.openwall.com/lists/oss-security/2012/01/20/18
downloads	www.downloads.asterisk.org/pub/security/AST-2012-001-10.diff
downloads	www.downloads.asterisk.org/pub/security/AST-2012-001-1.8.diff

29 Apr 2026 01:13Current

6.5Medium risk

Vulners AI Score6.5

CVSS 24.3

EPSS0.01057