17 matches found
EUVD-2007-3169
Malware in sbrugna...
EUVD-2021-28267
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2025-57767
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.15.2, 21.10.2, and 22.5.2, if a SIP request is received with an...
FreeSWITCH < 1.10.7 Multiple Vulnerabilities
FreeSWITCH is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora 11 : pidgin-sipe-1.9.1-1.fc11 (2010-4830)
Contributed File transfer functionality. File encryption is supported. Jakub Adam, Tomas Hrabik NTLMv2 and NTLMv2 Session Security support pier11 Implemented SIP Authentication Extensions protocol version 4 and 3 pier11 Adoption for commercial UNIX - HP/UX, Irix, Solaris - big endian fixes and...
Fedora 12 : pidgin-sipe-1.9.1-1.fc12 (2010-4848)
Contributed File transfer functionality. File encryption is supported. Jakub Adam, Tomas Hrabik NTLMv2 and NTLMv2 Session Security support pier11 Implemented SIP Authentication Extensions protocol version 4 and 3 pier11 Adoption for commercial UNIX - HP/UX, Irix, Solaris - big endian fixes and...
Fedora 13 : pidgin-sipe-1.9.1-1.fc13 (2010-4859)
Contributed File transfer functionality. File encryption is supported. Jakub Adam, Tomas Hrabik NTLMv2 and NTLMv2 Session Security support pier11 Implemented SIP Authentication Extensions protocol version 4 and 3 pier11 Adoption for commercial UNIX - HP/UX, Irix, Solaris - big endian fixes and...
CVE-2008-3903
CVE-2008-3903 affects Asterisk and related builds (1.2.x, 1.4.x, 1.6.x, Asterisk Business Edition, s800i, Trixbox) where Digest authentication with authalwaysreject yields different SIP responses based on whether a username is valid, enabling remote username enumeration. Public advisories (Debian...
Fedora 7 : asterisk-1.4.18.1-1.fc7 (2008-2620)
Update to 1.4.18.1 plus another patch to fix some security issues. AST-2008-002 details two buffer overflows that were discovered in RTP codec payload type handling. http://downloads.digium.com/pub/security/AST-2008-002.pdf All users of SIP in Asterisk 1.4 and 1.6 are affected. AST-2008-003 detai...
AST-2007-026 - SQL Injection issue in cdr_pgsql
Asterisk Project Security Advisory - AST-2007-026 +------------------------------------------------------------------------+ | Product | Asterisk | |----------------------+-------------------------------------------------| | Summary | SQL Injection issue in cdrpgsql |...
AST-2007-025 - SQL Injection issue in res_config_pgsql
Asterisk Project Security Advisory - AST-2007-025 +------------------------------------------------------------------------+ | Product | Asterisk | |----------------------+-------------------------------------------------| | Summary | SQL Injection issue in resconfigpgsql |...
Authentication flaw
Ingate Firewall and SIParator before 4.5.2 allow remote attackers to bypass SIP authentication via a certain maddr parameter...
CVE-2007-3177
Ingate Firewall and SIParator before 4.5.2 allow remote attackers to bypass SIP authentication via a certain maddr parameter...
CVE-2007-3177
Ingate Firewall and SIParator before 4.5.2 allow remote attackers to bypass SIP authentication via a certain maddr parameter...
CVE-2007-3177
Ingate Firewall and SIParator are affected prior to version 4.5.2. The vulnerability allows remote attackers to bypass SIP authentication via a specific maddr parameter, effectively defeating authentication for SIP sessions. The advisory wording indicates the issue exists in versions before 4.5.2...
InGate Firewall和SIParator存在多个未明漏洞
InGate Firewall/SIParator是具备SIP功能的企业级防火墙。 InGate Firewall/SIParator存在多个未明问题,远程攻击者可以利用漏洞绕过SIP验证需要访问敏感信息。 目前没有详细漏洞细节提供。 Ingate SIParator 4.5.1 Ingate SIParator 4.4.1 Ingate SIParator 4.3.4 Ingate SIParator 4.3.3 Ingate SIParator 4.3.2 Ingate SIParator 4.3.1 Ingate SIParator 4.3 Ingate SIParator 4.2...
CVE-2002-0669
The web interface for Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 allows administrators to cause a denial of service by modifying the SIPAUTHENTICATESCHEME value to force authentication of incoming calls, which does not notify the user when an authentication failure occurs...