Lucene search
PRIOn knowledge basePRION:CVE-2017-14603HistoryOct 10, 2017 - 1:30 a.m.
Design/Logic Flaw
2017-10-1001:30:00
PRIOn knowledge base
www.prio-n.com
6
In Asterisk 11.x before 11.25.3, 13.x before 13.17.2, and 14.x before 14.6.2 and Certified Asterisk 11.x before 11.6-cert18 and 13.x before 13.13-cert6, insufficient RTCP packet validation could allow reading stale buffer contents and when combined with the “nat” and “symmetric_rtp” options allow redirecting where Asterisk sends the next RTCP report.
| CPE | Name | Operator | Version |
|---|---|---|---|
| asterisk | eq | 13.1.0 | |
| asterisk | eq | 13.1.0 rc2 | |
| asterisk | eq | 13.2.1 | |
| asterisk | eq | 13.8.0 rc1 | |
| asterisk | eq | 13.15.0 rc2 | |
| asterisk | eq | 13.7.0 rc1 | |
| asterisk | eq | 13.7.0 rc2 | |
| asterisk | eq | 13.7.1 | |
| asterisk | eq | 13.1.0 rc1 | |
| asterisk | eq | 13.12 |
Related
debiancve
debiancve
CVE-2017-14603
2017-10-10 01:30:21
cvelist
cvelist
CVE-2017-14603
2017-10-09 14:00:00
cve
cve
CVE-2017-14603
2017-10-10 01:30:21
nessus
nessus
openvas
openvas
Debian: Security Advisory (DSA-3990-1)
2017-10-02 00:00:00
Asterisk RTP/RTCP Information Leak Vulnerability (AST-2017-008)
2017-09-20 00:00:00
osv
osv
asterisk - security update
2017-10-03 00:00:00
CVE-2017-14603
2017-10-10 01:30:21
nvd
nvd
CVE-2017-14603
2017-10-10 01:30:21
debian
debian
[SECURITY] [DSA 3990-1] asterisk security update
2017-10-03 21:32:33
ubuntucve
ubuntucve
CVE-2017-14603
2017-10-10 00:00:00
gentoo
gentoo
Asterisk: Multiple vulnerabilities
2017-10-29 00:00:00