Asterisk@1.6.1.24 Security Vulnerabilities and Issues — Asterisk@1.6.1.24 CVE List

Lucene search

DigiumAsterisk1.6.1.24

3 matches found

CVE•added 2011/07/06 7:55 p.m.•63 views

CVE-2011-2529

chan_sip.c in the SIP channel driver in Asterisk Open Source 1.6.x before 1.6.2.18.1 and 1.8.x before 1.8.4.3 does not properly handle '\0' characters in SIP packets, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a craft...

5CVSS7.2AI score0.03361EPSS

CVE•added 2011/04/27 12:55 a.m.•61 views

CVE-2011-1507

Asterisk Open Source 1.4.x before 1.4.40.1, 1.6.1.x before 1.6.1.25, 1.6.2.x before 1.6.2.17.3, and 1.8.x before 1.8.3.3 and Asterisk Business Edition C.x.x before C.3.6.4 do not restrict the number of unauthenticated sessions to certain interfaces, which allows remote attackers to cause a denial o...

5CVSS6.5AI score0.00147EPSS

CVE•added 2011/04/27 12:55 a.m.•57 views

CVE-2011-1599

manager.c in the Manager Interface in Asterisk Open Source 1.4.x before 1.4.40.1, 1.6.1.x before 1.6.1.25, 1.6.2.x before 1.6.2.17.3, and 1.8.x before 1.8.3.3 and Asterisk Business Edition C.x.x before C.3.6.4 does not properly check for the system privilege, which allows remote authenticated users...

9CVSS7.1AI score0.00338EPSS