3525 matches found
[NEWS] Asterisk SIP Implementation Issue
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
CVE-2002-0433
The CVE-2002-0433 entry concerns Pi3Web 2.0.0 where remote attackers can view restricted files by issuing an HTTP request containing a wildcard character ("*"). This is an unauthorized disclosure vulnerability via crafted requests, as described in NVD and CVE records. Connected documents confirm ...
CVE-2001-0965
glFTPD 1.23 allows remote attackers to cause a denial of service CPU consumption via a LIST command with an argument that contains a large number of asterisk characters...
glFTPd 1.x - 'LIST' Denial of Service
source: https://www.securityfocus.com/bid/3201/info glFtpD contains an input validation error that may allow a malicious user to cause a denial of service against a host running the daemon. The problem occurs when a specially crafted 'LIST' command is received by the server. If the argument to th...
CVE-2023-26566
Sangoma FreePBX 1805 through 2203 on Linux contains hardcoded credentials for the Asterisk REST Interface ARI, which allows remote attackers to reconfigure Asterisk and make external and internal calls via HTTP and WebSocket requests sent to the API...