2 matches found
CVE-2012-2947
chaniax2.c in the IAX2 channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1, when a certain mohinterpret setting is enabled, allows remote attackers to cause a denial of service daemon crash by placing a call on...
CVE-2007-2488
The IAX2 channel driver chaniax2 in Asterisk before 20070504 does not properly null terminate data, which allows remote attackers to trigger loss of transmitted data, and possibly obtain sensitive information memory contents or cause a denial of service application crash, by sending a frame that...