5 matches found
Gentoo Security Advisory GLSA 200610-15 (asterisk)
The remote host is missing updates announced in advisory GLSA 200610-15. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
openSUSE 10 Security Update : asterisk (asterisk-2272)
This update fixes 2 security problem in the PBX software Asterisk. CVE-2006-5444: Integer overflow in the getinput function in the Skinny channel driver chanskinny.c as used by Cisco SCCP phones, allows remote attackers to execute arbitrary code via a certain dlen value that passes a signed integ...
[SECURITY] [DSA 1229-1] New Asterisk packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 1229-1 [email protected] http://www.debian.org/security/ Martin Schulze December 6th, 2006 http://www.debian.org/security/faq -...
CVE-2006-5444
Integer overflow in the getinput function in the Skinny channel driver chanskinny.c in Asterisk 1.0.x before 1.0.12 and 1.2.x before 1.2.13, as used by Cisco SCCP phones, allows remote attackers to execute arbitrary code via a certain dlen value that passes a signed integer comparison and leads t...
CVE-2006-5444
CVE-2006-5444 involves an integer overflow in Asterisk’s Skinny channel driver (chan_skinny.c). Affected are Asterisk 1.0.x before 1.0.12 and 1.2.x before 1.2.13, used by Cisco SCCP phones. An attacker can trigger a heap-based buffer overflow via a crafted dlen value, potentially leading to remot...