Linux Distros Unpatched Vulnerability : CVE-2021-46837

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - respjsipt38 in Sangoma Asterisk 16.x before 16.16.2, 17.x before 17.9.3, and 18.x before 18.2.2, and Certified Asterisk before 16.8-cert7, allows an attacker to...

CVE-2023-27567

In OpenBSD 7.2, a TCP packet with destination port 0 that matches a pf divert-to rule can crash the kernel...

SUSE CVE-2012-4419

The comparetoraddrtoaddrpolicy function in or/policies.c in Tor before 0.2.2.39, and 0.2.3.x before 0.2.3.21-rc, allows remote attackers to cause a denial of service assertion failure and daemon exit via a zero-valued port field that is not properly handled during policy comparison...

Denial Of Service (DoS)

asterisk is vulnerable to denial of service. The vulnerability exists due to allows an append operation relative to the active topology which allows an attacker to trigger a crash by sending an m=image line and zero port in a response...

DEBIAN-CVE-2021-46837

respjsipt38 in Sangoma Asterisk 16.x before 16.16.2, 17.x before 17.9.3, and 18.x before 18.2.2, and Certified Asterisk before 16.8-cert7, allows an attacker to trigger a crash by sending an m=image line and zero port in a response to a T.38 re-invite initiated by Asterisk. This is a re-occurrenc...

UBUNTU-CVE-2021-46837

respjsipt38 in Sangoma Asterisk 16.x before 16.16.2, 17.x before 17.9.3, and 18.x before 18.2.2, and Certified Asterisk before 16.8-cert7, allows an attacker to trigger a crash by sending an m=image line and zero port in a response to a T.38 re-invite initiated by Asterisk. This is a re-occurrenc...

PT-2022-12938 · Sangoma +1 · Asterisk +1

Name of the Vulnerable Software and Affected Versions: Sangoma Asterisk versions 16.x through 16.16.1 Sangoma Asterisk versions 17.x through 17.9.2 Sangoma Asterisk versions 18.x through 18.2.1 Certified Asterisk versions prior to 16.8-cert7 Description: The issue allows an attacker to trigger a...

FreeBSD : asterisk -- Crash when negotiating T.38 with a zero port (9e8f0766-7d21-11eb-a2be-001999f8d30b)

The Asterisk project reports : When Asterisk sends a re-invite initiating T.38 faxing and the endpoint responds with a m=image line and zero port, a crash will occur in Asterisk. This is a reoccurrence of AST-2019-004. C Tenable Network Security, Inc. The descriptive text and package checks in th...

qemu: slirp: NULL pointer deref in sosendto()

A NULL pointer dereference flaw was found in the way QEMU handled UDP packets with a source port and address of 0 when QEMU's user networking was in use. A local guest user could use this flaw to crash the guest...

DEBIAN-CVE-2014-3640

The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of service NULL pointer dereference by sending a udp packet with a value of 0 in the source port and address, which triggers access of an uninitialized socket...

DEBIAN-CVE-2012-4419

The comparetoraddrtoaddrpolicy function in or/policies.c in Tor before 0.2.2.39, and 0.2.3.x before 0.2.3.21-rc, allows remote attackers to cause a denial of service assertion failure and daemon exit via a zero-valued port field that is not properly handled during policy comparison...

CVE-2004-1850

The Rage 1.01 and earlier allows remote attackers to cause a denial of service infinite loop via a TCP packet with the port and IP address set to zero...