EUVD-2012-0397

Malware in sbrugna...

Wireshark epan/dissectors/packet-sccp.c file has denial of service vulnerability

Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A security vulnerability exists in the epan/dissectors/packet-sccp.c file in Wireshark...

UBUNTU-CVE-2018-7324

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-sccp.c had an infinite loop that was addressed by using a correct integer data type...

DEBIAN-CVE-2018-7324

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-sccp.c had an infinite loop that was addressed by using a correct integer data type...

Debian DLA-1225-1 : asterisk security update

A vulnerability has been discovered in Asterisk, an open source PBX and telephony toolkit, which may result in resource exhaustion and denial of service. CVE-2017-17090: memory leak from chanskinny. If the chanskinny AKA SCCP protocol channel driver is flooded with certain requests it can cause t...

Asterisk DoS Vulnerability

Asterisk is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:digium:asterisk"; if...

CVE-2017-17090

An issue was discovered in chanskinny.c in Asterisk Open Source 13.18.2 and older, 14.7.2 and older, and 15.1.2 and older, and Certified Asterisk 13.13-cert7 and older. If the chanskinny aka SCCP protocol channel driver is flooded with certain requests, it can cause the asterisk process to use...

Code injection

An issue was discovered in chanskinny.c in Asterisk Open Source 13.18.2 and older, 14.7.2 and older, and 15.1.2 and older, and Certified Asterisk 13.13-cert7 and older. If the chanskinny aka SCCP protocol channel driver is flooded with certain requests, it can cause the asterisk process to use...

CVE-2017-17090

An issue was discovered in chanskinny.c in Asterisk Open Source 13.18.2 and older, 14.7.2 and older, and 15.1.2 and older, and Certified Asterisk 13.13-cert7 and older. If the chanskinny aka SCCP protocol channel driver is flooded with certain requests, it can cause the asterisk process to use...

CVE-2017-17090

An issue was discovered in chanskinny.c in Asterisk Open Source 13.18.2 and older, 14.7.2 and older, and 15.1.2 and older, and Certified Asterisk 13.13-cert7 and older. If the chanskinny aka SCCP protocol channel driver is flooded with certain requests, it can cause the asterisk process to use...

CVE-2017-17090

CVE-2017-17090 affects the chan_skinny (SCCP) driver in Asterisk, where flooding the channel driver with certain requests can exhaust VM memory and cause the process to stop handling requests. Public details include both exploitation references (Exploit-DB entry for 13.17.2) and multiple vendor a...

asterisk -- DOS Vulnerability in Asterisk chan_skinny

The Asterisk project reports: If the chanskinny AKA SCCP protocol channel driver is flooded with certain requests it can cause the asterisk process to use excessive amounts of virtual memory eventually causing asterisk to stop processing requests of any kind...

CVE-2012-0361

The sccp-protocol component in Cisco IP Communicator CIPC 7.0 through 8.6 does not limit the rate of SCCP messages to Cisco Unified Communications Manager CUCM, which allows remote attackers to cause a denial of service via vectors that trigger 1 on hook and 2 off hook messages, as demonstrated b...

Code injection

The sccp-protocol component in Cisco IP Communicator CIPC 7.0 through 8.6 does not limit the rate of SCCP messages to Cisco Unified Communications Manager CUCM, which allows remote attackers to cause a denial of service via vectors that trigger 1 on hook and 2 off hook messages, as demonstrated b...

CVE-2012-0361

CVE-2012-0361 affects the sccp-protocol component in Cisco IP Communicator (CIPC) versions 7.0–8.6. The issue is that it does not limit the rate of SCCP messages to Cisco Unified Communications Manager (CUCM), which allows remote attackers to cause a denial of service via vectors that trigger (1)...

CVE-2012-0361

The sccp-protocol component in Cisco IP Communicator CIPC 7.0 through 8.6 does not limit the rate of SCCP messages to Cisco Unified Communications Manager CUCM, which allows remote attackers to cause a denial of service via vectors that trigger 1 on hook and 2 off hook messages, as demonstrated b...

PT-2011-2316 · Cisco · Cisco Asa +2

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices versions 7.0 through 7.08.10 Cisco Adaptive Security Appliances ASA 5500 series devices versions 7.1 through 7.25.0 Cisco Adaptive Security Appliances ASA 5500 series devices versions...

Cisco Unified CallManager / Unified Presence Server multiple security vulnerabilities

Denial of service with Skinny / SCCP protocol TCP/2000, TCP/2443, ICMP echo requiests flood, IPSec UDP/8500 parsing...