Lucene search

K
cve[email protected]CVE-2012-1183
HistorySep 18, 2012 - 6:55 p.m.

CVE-2012-1183

2012-09-1818:55:04
CWE-119
web.nvd.nist.gov
33
cve
2012
1183
stack-based buffer overflow
miliwatt
asterisk
denial of service
nvd
security vulnerability

6.8 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.067 Low

EPSS

Percentile

93.9%

Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt application in Asterisk 1.4.x before 1.4.44, 1.6.x before 1.6.2.23, 1.8.x before 1.8.10.1, and 10.x before 10.2.1, when the o option is used and the internal_timing option is off, allows remote attackers to cause a denial of service (application crash) via a large number of samples in an audio packet.

Affected configurations

NVD
Node
digiumasteriskRange1.4.01.4.44
OR
digiumasteriskRange1.6.01.6.2.23
OR
digiumasteriskRange1.8.01.8.10.1
OR
digiumasteriskRange10.0.010.2.1
Node
debiandebian_linuxMatch6.0

6.8 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.067 Low

EPSS

Percentile

93.9%