2 matches found
CVE-2008-2543
The CVE-2008-2543 issue affects the ooh323 channel driver in Asterisk Addons 1.2.x before 1.2.9 and Asterisk-Addons 1.4.x before 1.4.7. A remote attacker could crash the daemon by sending crafted TCP packets to a remotely accessible TCP port that was meant for localhost communication; the vulnera...
CVE-2007-5488
CVE-2007-5488 concerns the Asterisk-Addons cdr_addon_mysql module, where the cdr_addon_mysql component fails to escape the source and destination numbers (and possibly SIP URI) when inserting a record. This leads to SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQ...