Asterisk@1.0.10 Security Vulnerabilities and Issues — Asterisk@1.0.10 CVE List

Lucene search

DigiumAsterisk1.0.10

3 matches found

CVE•added 2006/10/23 5:7 p.m.•85 views

CVE-2006-5444

Integer overflow in the get_input function in the Skinny channel driver (chan_skinny.c) in Asterisk 1.0.x before 1.0.12 and 1.2.x before 1.2.13, as used by Cisco SCCP phones, allows remote attackers to execute arbitrary code via a certain dlen value that passes a signed integer comparison and leads...

7.5CVSS7.7AI score0.8691EPSS

CVE•added 2006/06/07 10:2 a.m.•58 views

CVE-2006-2898

The IAX2 channel driver (chan_iax2) for Asterisk 1.2.x before 1.2.9 and 1.0.x before 1.0.11 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via truncated IAX 2 (IAX2) video frames, which bypasses a length check and leads to a buffer overflow involving negativ...

7.5CVSS7.9AI score0.00324EPSS

CVE•added 2006/08/24 8:4 p.m.•55 views

CVE-2006-4345

Stack-based buffer overflow in channels/chan_mgcp.c in MGCP in Asterisk 1.0 through 1.2.10 allows remote attackers to execute arbitrary code via a crafted audit endpoint (AUEP) response.

7.5CVSS7.8AI score0.05153EPSS