Lucene search

RedhatCVELIST:CVE-2011-1174

HistoryMar 31, 2011 - 10:00 p.m.

CVE-2011-1174

2011-03-3122:00:00

redhat

www.cve.org

6.2 Medium

AI Score

Confidence

Low

0.094 Low

EPSS

Percentile

94.7%

JSON

manager.c in Asterisk Open Source 1.6.1.x before 1.6.1.24, 1.6.2.x before 1.6.2.17.2, and 1.8.x before 1.8.3.2 allows remote attackers to cause a denial of service (CPU and memory consumption) via a series of manager sessions involving invalid data.

References

downloads.asterisk.org/pub/security/AST-2011-003.html

lists.fedoraproject.org/pipermail/package-announce/2011-March/056945.html

lists.fedoraproject.org/pipermail/package-announce/2011-March/057156.html

lists.fedoraproject.org/pipermail/package-announce/2011-March/057163.html

openwall.com/lists/oss-security/2011/03/17/5

openwall.com/lists/oss-security/2011/03/21/12

securitytracker.com/id?1025223

www.debian.org/security/2011/dsa-2225

www.securityfocus.com/bid/46897

www.vupen.com/english/advisories/2011/0686

www.vupen.com/english/advisories/2011/0790

bugzilla.redhat.com/show_bug.cgi?id=688675

exchange.xforce.ibmcloud.com/vulnerabilities/66139