Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2007-3764
HistoryJul 18, 2007 - 5:30 p.m.

CVE-2007-3764

2007-07-1817:30:00
[email protected]
web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.3 Medium

AI Score

Confidence

High

0.97 High

EPSS

Percentile

99.8%

JSON

The Skinny channel driver (chan_skinny) in Asterisk before 1.2.22 and 1.4.x before 1.4.8, Business Edition before B.2.2.1, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote attackers to cause a denial of service (crash) via a certain data length value in a crafted packet, which results in an β€œoverly large memcpy.”

Affected configurations

NVD
Node
asteriskasteriskMatch1.0
OR
asteriskasteriskMatch1.0.6
OR
asteriskasteriskMatch1.0.7
OR
asteriskasteriskMatch1.0.8
OR
asteriskasteriskMatch1.0.9
OR
asteriskasteriskMatch1.0.10
OR
asteriskasteriskMatch1.0.11
OR
asteriskasteriskMatch1.0.12
OR
asteriskasteriskMatch1.2.0_beta1
OR
asteriskasteriskMatch1.2.0_beta2
OR
asteriskasteriskMatch1.2.5
OR
asteriskasteriskMatch1.2.6
OR
asteriskasteriskMatch1.2.7
OR
asteriskasteriskMatch1.2.8
OR
asteriskasteriskMatch1.2.9
OR
asteriskasteriskMatch1.2.10
OR
asteriskasteriskMatch1.2.11
OR
asteriskasteriskMatch1.2.12
OR
asteriskasteriskMatch1.2.13
OR
asteriskasteriskMatch1.2.14
OR
asteriskasteriskMatch1.2.15
OR
asteriskasteriskMatch1.2.16
OR
asteriskasteriskMatch1.2.17
OR
asteriskasteriskMatch1.4.1
OR
asteriskasteriskMatch1.4.2
OR
asteriskasteriskMatch1.4.4_2007-04-27
OR
asteriskasteriskMatch1.4_beta
OR
asteriskasteriskMatchabusiness
OR
asteriskasteriskMatchb.1.3.2business
OR
asteriskasteriskMatchb.1.3.3business
OR
asteriskasteriskMatchb.2.2.0business
OR
asteriskasterisk_appliance_developer_kitRange≀0.4
OR
asteriskasterisknowMatchbeta_5
OR
asteriskasterisknowMatchbeta_6
Node
asterisks800i_applianceMatch1.0
OR
asterisks800i_applianceMatch1.0.1

Related

ubuntucve 1
debiancve 1
cvelist 1
cve 1
securityvulns 2
prion 1
nessus 3
seebug 1
gentoo 1
openvas 4
osv 1
debian 1
ubuntucve
ubuntucve
CVE-2007-3764
2007-07-18 00:00:00
debiancve
debiancve
CVE-2007-3764
2007-07-18 17:30:00
cvelist
cvelist
CVE-2007-3764
2007-07-18 17:00:00
cve
cve
CVE-2007-3764
2007-07-18 17:30:00
securityvulns
securityvulns
ASA-2007-016: Remote crash vulnerability in Skinny channel driver
2007-07-19 00:00:00
Asterisk VoIP server multiple security vulnerabilities
2007-07-19 00:00:00
prion
prion
Code injection
2007-07-18 17:30:00
nessus
nessus
openSUSE 10 Security Update : asterisk (asterisk-3977)
2007-10-17 00:00:00
GLSA-200802-11 : Asterisk: Multiple vulnerabilities
2008-02-27 00:00:00
Debian DSA-1358-1 : asterisk - several vulnerabilities
2007-08-28 00:00:00
seebug
seebug
Asterisk倚δΈͺθΏœη¨‹ζ‹’η»ζœεŠ‘ζΌζ΄ž
2007-07-20 00:00:00
gentoo
gentoo
Asterisk: Multiple vulnerabilities
2008-02-26 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200802-11 (asterisk)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200802-11 (asterisk)
2008-09-24 00:00:00
Debian: Security Advisory (DSA-1358-1)
2008-01-17 00:00:00
osv
osv
asterisk
2007-08-26 00:00:00
debian
debian
[SECURITY] [DSA 1358-1] New asterisk packages fix several vulnerabilities
2007-08-26 08:04:07

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.3 Medium

AI Score

Confidence

High

0.97 High

EPSS

Percentile

99.8%

JSON
Related for NVD:CVE-2007-3764
ubuntucve1debiancve1cvelist1cve1securityvulns2prion1nessus3seebug1gentoo1openvas4osv1debian1