Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-1390HistoryMar 24, 2008 - 5:44 p.m.
CVE-2008-1390
2008-03-2417:44:00
Debian Security Bug Tracker
security-tracker.debian.org
7
0.034 Low
EPSS
Percentile
91.4%
The AsteriskGUI HTTP server in Asterisk Open Source 1.4.x before 1.4.19-rc3 and 1.6.x before 1.6.0-beta6, Business Edition C.x.x before C.1.6, AsteriskNOW before 1.0.2, Appliance Developer Kit before revision 104704, and s800i 1.0.x before 1.1.0.2 generates insufficiently random manager ID values, which makes it easier for remote attackers to hijack a manager session via a series of ID guesses.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | asterisk | <ย 1:1.4.19.1~dfsg-1 | asterisk_1:1.4.19.1~dfsg-1_all.deb |
| Debian | 10 | all | asterisk | <ย 1:1.4.19.1~dfsg-1 | asterisk_1:1.4.19.1~dfsg-1_all.deb |
| Debian | 999 | all | asterisk | <ย 1:1.4.19.1~dfsg-1 | asterisk_1:1.4.19.1~dfsg-1_all.deb |
Related
ubuntucve
ubuntucve
CVE-2008-1390
2008-03-24 00:00:00
securityvulns
securityvulns
AST-2008-005: HTTP Manager ID is predictable
2008-03-19 00:00:00
Asterisk multiple security vulnerabilities
2008-03-21 00:00:00
prion
prion
Session fixation
2008-03-24 17:44:00
seebug
seebug
Asteriskๅฏ้ขๆตHTTP็ฎก็ๅจไผ่ฏIDๆผๆด
2008-03-21 00:00:00
cvelist
cvelist
CVE-2008-1390
2008-03-24 17:00:00
cve
cve
CVE-2008-1390
2008-03-24 17:44:00
redhatcve
redhatcve
CVE-2008-1390
2019-10-04 22:00:18
fedora
fedora
[SECURITY] Fedora 8 Update: asterisk-1.4.18.1-1.fc8
2008-03-21 22:03:59
[SECURITY] Fedora 7 Update: asterisk-1.4.18.1-1.fc7
2008-03-21 22:15:10
openvas
openvas
Fedora Update for asterisk FEDORA-2008-2620
2009-02-16 00:00:00
Fedora Update for asterisk FEDORA-2008-2620
2009-02-16 00:00:00
Fedora Update for asterisk FEDORA-2008-2554
2009-02-16 00:00:00
nessus
nessus
Fedora 7 : asterisk-1.4.18.1-1.fc7 (2008-2620)
2008-03-26 00:00:00
Fedora 8 : asterisk-1.4.18.1-1.fc8 (2008-2554)
2008-03-26 00:00:00