531 matches found
CVE-2017-16671
CVE-2017-16671 affects Asterisk Open Source 13.x (<13.18.1), 14.x (<14.7.1), 15.x (<15.1.1) and Certified Asterisk 13.13 (=13.23.1, and FreeBSD/FreeBSD-based advisories mirror the fix trajectory. If exploiting, an attacker could trigger overflow via crafted CDR updates. No exploitation s...
Digium Asterisk Open Source and Certified Asterisk Arbitrary Command Execution Vulnerabilities
Digium Asterisk Open Source and Certified Asterisk are both open source telephone exchange PBX system software from Digium, Inc. in the United States. The software supports voicemail, multi-party voice conferencing, and interactive voice response IVR. There are security vulnerabilities in Asteris...
Digium Asterisk Open Source and Certified Asterisk Session Hijacking Vulnerability
Digium Asterisk Open Source and Certified Asterisk are both open source telephone exchange PBX system software from Digium, Inc. in the United States. The software supports voicemail, multi-party voice conferencing, and interactive voice response IVR. A security vulnerability exists in Asterisk...
Intel® PROSet/Wireless Software Denial of Service - Lenovo Support US
No description provided...
amca.org XSS vulnerability
Vulnerable URL: http://www.amca.org/certified-listed/continent.php?ContinentCode=AS=1"...
Digium Asterisk Open Source and Certified Asterisk Denial of Service Vulnerabilities
Digium Asterisk Open Source and Certified Asterisk are both open source telephone exchange PBX system software from Digium, Inc. in the United States. The software supports voicemail, multi-party voice conferencing, and interactive voice response IVR. A denial of service vulnerability exists in...
CVE-2017-9359
The multi-part body parser in PJSIP, as used in Asterisk Open Source 13.x before 13.15.1 and 14.x before 14.4.1, Certified Asterisk 13.13 before 13.13-cert4, and other products, allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted packet...
CVE-2017-9358
A memory exhaustion vulnerability exists in Asterisk Open Source 13.x before 13.15.1 and 14.x before 14.4.1 and Certified Asterisk 13.13 before 13.13-cert4, which can be triggered by sending specially crafted SCCP packets causing an infinite loop and leading to memory exhaustion by message loggin...
Asterisk Open Source and Certified Asterisk RTP Resource Exhaustion DoS Vulnerability
Asterisk Open Source and Certified Asterisk are prone to a remote denial of service DoS vulnerability. This VT has been deprecated since this check is already covered in SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyrigh...
CVE-2016-7551
chainsip in Asterisk Open Source 11.x before 11.23.1 and 13.x 13.11.1 and Certified Asterisk 11.6 before 11.6-cert15 and 13.8 before 13.8-cert3 allows remote attackers to cause a denial of service port exhaustion...
Code injection
chainsip in Asterisk Open Source 11.x before 11.23.1 and 13.x 13.11.1 and Certified Asterisk 11.6 before 11.6-cert15 and 13.8 before 13.8-cert3 allows remote attackers to cause a denial of service port exhaustion...
Digium Asterisk Open Source and Certified Asterisk CDR Buffer Overflow Vulnerability
Digium Asterisk Open Source and Certified Asterisk are open source telephone switch PBX system software from Digium, Inc. in the United States. A buffer overflow vulnerability exists in Digium Asterisk Open Source and Certified Asterisk's handling of CDR user fields. A remote attacker could explo...
Wallarm Teams up with NGINX Plus to Provide Advanced Security
Wallarm is excited to be a pioneer security vendor in NGINX Certified Module program and provide trusted and verified security functionality to NGINX Plus customers. “We are pleased to announce that Wallarm is now part of the NGINX Plus Certified Module program with the Wallarm Next Generation WA...
THN Deal: Complete Linux Certification Training (Save 97%)
If you are also searching for the answers to what skills are needed for a job in cyber security, you should know that this varies widely based upon the responsibilities of a particular role, the type of company you want to work with, and especially on it’s IT architect. However, Linux is the most...
Threat Outbreak Alert RuleID25821: Email Messages Distributing Malicious Software on October 24, 2016
Medium Alert ID: 49400 First Published: 2016 October 24 13:47 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID25821 may contain the following files: Name |...
Asterisk RTP Resource Exhaustion Vulnerability (AST-2016-007)
Asterisk is prone to a RTP resource exhaustion vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:digium:asterisk"; i...
More than 6 0 Non-disclosure vulnerability 2 2 a home router(SOHU router)-vulnerability warning-the black bar safety net
! The affected router list as follows: 1. Observa Telecom AW4062 2. Comtrend WAP-5813n 3. Comtrend CT-5 3 6 5 4. D-Link DSL-2750B 5. Belkin F5D7632-4 6. Sagem LiveBox Pro 2 SP 7. Amper Xavi 7 9 6 8 and 7 9 6 8+ 8. Sagem Fast 1 2 0 1 9. Linksys WRT54GL 1 0. Observa Telecom RTA01N 1 1...
The vulnerability of the Asterisk IP-telephony management system, as well as the Certified Asterisk IP-telephony management system, allows a perpetrator to trigger a service failure.
The vulnerability of the chansip function in IP-telephony management systems of Certified Asterisk and Asterisk is related to the setting of the timert1 sip.conf value, which exceeds 1245. Exploiting this vulnerability allows a malicious actor to cause a service failure exhaustion of file...
The vulnerability of Asterisk IP-telephony management systems and Certified Asterisk, which allows a perpetrator to trigger a service failure.
The vulnerability of Asterisk IP-telephony systems and Certified Asterisk is related to errors in pointer assignment. Exploiting this vulnerability can allow a malicious actor to cause service failures pointer assignment of an uninitialized pointer and emergency termination of operations...
v2. 7. 1 The following version of the Git in the presence of vulnerabilities, or may lead to remote code execution-vulnerability warning-the black bar safety net
It is understood that the security researchers in 2. 7. 1 version before all versions of the Git found a security vulnerability in its server and client are the presence of this vulnerability. An attacker can exploit this vulnerability to cause the target system to a buffer overflow, resulting in...