129 matches found
DEBIAN-CVE-2014-6421
Use-after-free vulnerability in the SDP dissector in Wireshark 1.10.x before 1.10.10 allows remote attackers to cause a denial of service application crash via a crafted packet that leverages split memory ownership between the SDP and RTP dissectors...
Mandriva Linux Security Advisory : asterisk (MDVSA-2013:140)
Multiple vulnerablilities was identified and fixed in asterisk : The SIP channel driver in Asterisk Open Source 1.8.x before 1.8.20.2, 10.x before 10.12.2, and 11.x before 11.2.2; Certified Asterisk 1.8.15 before 1.8.15-cert2; Asterisk Business Edition BE C.3.x before C.3.8.1; and Asterisk...
Stack overflow
Stack-based buffer overflow in res/resformatattrh264.c in Asterisk Open Source 11.x before 11.2.2 allows remote attackers to execute arbitrary code via a long sprop-parameter-sets H.264 media attribute in a SIP Session Description Protocol SDP header...
PT-2009-5109 · Digium · Asterisk Open Source +2
Name of the Vulnerable Software and Affected Versions: Asterisk Open Source versions 1.2.x through 1.2.33 Asterisk Open Source versions 1.4.x through 1.4.26 Asterisk Open Source versions 1.6.0.x through 1.6.0.11 Asterisk Open Source versions 1.6.1.x through 1.6.1.3 Asterisk Business Edition A.x.x...
DEBIAN-CVE-2008-1289
Multiple buffer overflows in Asterisk Open Source 1.4.x before 1.4.18.1 and 1.4.19-rc3, Open Source 1.6.x before 1.6.0-beta6, Business Edition C.x.x before C.1.6.1, AsteriskNOW 1.0.x before 1.0.2, Appliance Developer Kit before 1.4 revision 109386, and s800i 1.1.x before 1.1.0.2 allow remote...
CVE-2008-0295
Heap-based buffer overflow in modules/access/rtsp/realsdpplin.c in the Xine library, as used in VideoLAN VLC Media Player 0.8.6d and earlier, allows user-assisted remote attackers to cause a denial of service crash or execute arbitrary code via long Session Description Protocol SDP data...
CVE-2008-0295
Heap-based buffer overflow in modules/access/rtsp/realsdpplin.c in the Xine library, as used in VideoLAN VLC Media Player 0.8.6d and earlier, allows user-assisted remote attackers to cause a denial of service crash or execute arbitrary code via long Session Description Protocol SDP data...
DEBIAN-CVE-2007-2293
Multiple stack-based buffer overflows in the processsdp function in chansip.c of the SIP channel T.38 SDP parser in Asterisk before 1.4.3 allow remote attackers to execute arbitrary code via a long 1 T38FaxRateManagement or 2 T38FaxUdpEC SDP parameter in an SIP message, as demonstrated using SIP...
Security Best Practice: MGCP Protocol Enforcement
MGCP is an implementation of the Media Gateway Control Protocol architecture1 for controlling Media Gateways on Internet Protocol IP networks and the public switched telephone network PSTN.MGCP is a signaling and call control protocol used within Voice over IP VoIP systems that typically...