5 matches found
CVE-2012-2416
chansip.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.11.1 and 10.x before 10.3.1 and Asterisk Business Edition C.3.x before C.3.7.4, when the trustrpid option is enabled, allows remote authenticated users to cause a denial of service daemon crash by sending a SIP UPDATE...
DEBIAN-CVE-2012-2416
chansip.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.11.1 and 10.x before 10.3.1 and Asterisk Business Edition C.3.x before C.3.7.4, when the trustrpid option is enabled, allows remote authenticated users to cause a denial of service daemon crash by sending a SIP UPDATE...
CVE-2012-2416
chansip.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.11.1 and 10.x before 10.3.1 and Asterisk Business Edition C.3.x before C.3.7.4, when the trustrpid option is enabled, allows remote authenticated users to cause a denial of service daemon crash by sending a SIP UPDATE...
CVE-2012-2416
CVE-2012-2416 affects Asterisk Open Source 1.8.x prior to 1.8.11.1 and 10.x prior to 10.3.1, plus Asterisk Business Edition C.3.x prior to C.3.7.4, where enabling trustrpid lets remote authenticated users crash the daemon via SIP UPDATE triggering a connected-line update without an associated cha...
Asterisk Remote Crash Vulnerability in SIP Channel Driver (AST-2012-006)
According to the version in its SIP banner, the version of Asterisk running on the remote host is potentially affected by a vulnerability that could allow a remote attacker to crash the server. This issue could be exploited by sending an UPDATE over a SIP channel after the channel dialog has been...