Lucene search

K
cve[email protected]CVE-2012-1183
HistorySep 18, 2012 - 6:55 p.m.

CVE-2012-1183

2012-09-1818:55:04
CWE-119
web.nvd.nist.gov
33
cve
2012
1183
stack-based buffer overflow
miliwatt
asterisk
denial of service
nvd
security vulnerability

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.8 Medium

AI Score

Confidence

Low

0.067 Low

EPSS

Percentile

93.9%

Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt application in Asterisk 1.4.x before 1.4.44, 1.6.x before 1.6.2.23, 1.8.x before 1.8.10.1, and 10.x before 10.2.1, when the o option is used and the internal_timing option is off, allows remote attackers to cause a denial of service (application crash) via a large number of samples in an audio packet.

Affected configurations

NVD
Node
digiumasteriskRange1.4.01.4.44
OR
digiumasteriskRange1.6.01.6.2.23
OR
digiumasteriskRange1.8.01.8.10.1
OR
digiumasteriskRange10.0.010.2.1
Node
debiandebian_linuxMatch6.0

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.8 Medium

AI Score

Confidence

Low

0.067 Low

EPSS

Percentile

93.9%