Open Source@11.1.0 Security Vulnerabilities and Issues — Open Source@11.1.0 CVE List

Lucene search

AsteriskOpen Source11.1.0

3 matches found

CVE•added 2013/04/01 4:55 p.m.•135 views

CVE-2013-2685

Stack-based buffer overflow in res/res_format_attr_h264.c in Asterisk Open Source 11.x before 11.2.2 allows remote attackers to execute arbitrary code via a long sprop-parameter-sets H.264 media attribute in a SIP Session Description Protocol (SDP) header.

7.5CVSS7.9AI score0.08932EPSS

CVE•added 2013/04/01 4:55 p.m.•56 views

CVE-2013-2686

main/http.c in the HTTP server in Asterisk Open Source 1.8.x before 1.8.20.2, 10.x before 10.12.2, and 11.x before 11.2.2; Certified Asterisk 1.8.15 before 1.8.15-cert2; and Asterisk Digiumphones 10.x-digiumphones before 10.12.2-digiumphones does not properly restrict Content-Length values, which a...

5CVSS6.3AI score0.29742EPSS

CVE•added 2013/04/01 4:55 p.m.•52 views

CVE-2013-2264

The SIP channel driver in Asterisk Open Source 1.8.x before 1.8.20.2, 10.x before 10.12.2, and 11.x before 11.2.2; Certified Asterisk 1.8.15 before 1.8.15-cert2; Asterisk Business Edition (BE) C.3.x before C.3.8.1; and Asterisk Digiumphones 10.x-digiumphones before 10.12.2-digiumphones exhibits dif...

5CVSS6.4AI score0.00171EPSS