11 matches found
Gentoo Security Advisory GLSA 200905-01 (asterisk)
The remote host is missing updates announced in advisory GLSA 200905-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Fedora Update for asterisk FEDORA-2008-3365
Check for the Version of asterisk OpenVAS Vulnerability Test Fedora Update for asterisk FEDORA-2008-3365 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for asterisk FEDORA-2008-3390
Check for the Version of asterisk OpenVAS Vulnerability Test Fedora Update for asterisk FEDORA-2008-3390 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for asterisk FEDORA-2008-3365
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for asterisk FEDORA-2008-3390
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
openSUSE 10 Security Update : asterisk (asterisk-5524)
This security update fixes multiple security vulnerabilities in asterisk CVE-2008-1897, CVE-2008-2119, CVE-2008-3263, CVE-2008-3264. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
Asterisk IAX2 Multiple Method Handshake Spoofing DoS
The version of Asterisk running on the remote host does not properly validate an IAX2 handshake. By spoofing NEW and ACK messages, an unauthenticated, remote attacker may be able to leverage this issue to flood a third-party host with packets from the affected host containing audio data. C Tenabl...
[SECURITY] [DSA 1563-1] New asterisk packages fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-1563-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 30, 2008 http://www.debian.org/security/faq -...
AST-2008-006 - 3-way handshake in IAX2 incomplete
Asterisk Project Security Advisory - AST-2008-006 +------------------------------------------------------------------------+ | Product | Asterisk | |--------------------+---------------------------------------------------| | Summary | 3-way handshake in IAX2 incomplete |...
CVE-2008-1897
The IAX2 channel driver chaniax2 in Asterisk Open Source 1.0.x, 1.2.x before 1.2.28, and 1.4.x before 1.4.19.1; Business Edition A.x.x, B.x.x before B.2.5.2, and C.x.x before C.1.8.1; AsteriskNOW before 1.0.3; Appliance Developer Kit 0.x.x; and s800i before 1.1.0.3, when configured to allow...
CVE-2008-1897
The CVE-2008-1897 issue affects the IAX2 channel driver in Asterisk Open Source (various 1.0.x, 1.2.x before 1.2.28, 1.4.x before 1.4.19.1; AsteriskNOW; Business Editions; and s800i prior to listed versions). The vulnerability arises when unauthenticated calls are allowed and the ACK response doe...