6 matches found
Debian Security Advisory DSA 1952-1 (asterisk)
The remote host is missing an update to asterisk announced via advisory DSA 1952-1. OpenVAS Vulnerability Test $Id: deb19521.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1952-1 asterisk Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
Debian: Security Advisory (DSA-1952-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200905-01 (asterisk)
The remote host is missing updates announced in advisory GLSA 200905-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
AST-2009-003: SIP responses expose valid usernames
Asterisk Project Security Advisory - AST-2009-003 +------------------------------------------------------------------------+ | Product | Asterisk | |--------------------+---------------------------------------------------| | Summary | SIP responses expose valid usernames |...
CVE-2008-3903
Asterisk Open Source 1.2.x before 1.2.32, 1.4.x before 1.4.24.1, and 1.6.0.x before 1.6.0.8; Asterisk Business Edition A.x.x, B.x.x before B.2.5.8, C.1.x.x before C.1.10.5, and C.2.x.x before C.2.3.3; s800i 1.3.x before 1.3.0.2; and Trixbox PBX 2.6.1, when Digest authentication and authalwaysreje...
CVE-2008-3903
CVE-2008-3903 affects Asterisk and related builds (1.2.x, 1.4.x, 1.6.x, Asterisk Business Edition, s800i, Trixbox) where Digest authentication with authalwaysreject yields different SIP responses based on whether a username is valid, enabling remote username enumeration. Public advisories (Debian...