Lucene search

K
freebsdFreeBSD27C331D5-64C7-11D8-80E3-0020ED76EF5A
HistoryJan 13, 2004 - 12:00 a.m.

Vulnerabilities in H.323 implementations

2004-01-1300:00:00
vuxml.freebsd.org
30

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.225 Low

EPSS

Percentile

96.5%

The NISCC and the OUSPG
developed a test suite for the H.323 protocol. This test
suite has uncovered vulnerabilities in several H.323
implementations with impacts ranging from denial-of-service
to arbitrary code execution.
In the FreeBSD Ports Collection, pwlib' is directly affected. Other applications such as asterisk’ and
openh323' incorporate pwlib’ statically and so are also
independently affected.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchpwlib< 1.5.0_5UNKNOWN
FreeBSDanynoarchasterisk<= 0.7.2UNKNOWN
FreeBSDanynoarchopenh323< 1.12.0_4UNKNOWN

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.225 Low

EPSS

Percentile

96.5%