Lucene search
RootSSV:61785HistoryMar 13, 2014 - 12:00 a.m.
Asterisk特制HTTP Cookie处理拒绝服务漏洞
2014-03-1300:00:00
Root
www.seebug.org
17
0.726 High
EPSS
Percentile
97.8%
CVE ID:CVE-2014-2286
Asterisk是一款实现电话用户交换机(PBX)功能的自由软件、开源软件。
Asterisk在处理包含大量超大cookie头的请求时存在一个溢出漏洞,允许远程攻击者利用漏洞提交恶意请求触发基于栈的溢出,可导致拒绝服务攻击。
0
Asterisk Open Source 1.8.26.0
Asterisk Open Source 11.8.0
Asterisk Open Source 12.1.0
Certified Asterisk 1.8.15-cert4
Certified Asterisk 11.6-cert1
厂商补丁:
Asterisk
Asterisk Open Source 1.8.26.1, 11.8.1, 12.1.1和Certified Asterisk1.8.15-cert4,11.6-cert1已经修复该漏洞,建议用户下载更新:
http://www.asterisk.org/
Related
ubuntucve
ubuntucve
CVE-2014-2286
2014-04-18 00:00:00
debiancve
debiancve
CVE-2014-2286
2014-04-18 22:14:00
checkpoint_advisories
checkpoint_advisories
Digium Asterisk Cookie Stack Overflow (CVE-2014-2286)
2014-04-13 00:00:00
securityvulns
securityvulns
AST-2014-001: Stack Overflow in HTTP Processing of Cookie Headers.
2014-03-13 00:00:00
Asterisk multiple security vulnerabilities
2014-03-13 00:00:00
cve
cve
CVE-2014-2286
2014-04-18 22:14:00
nessus
nessus
Asterisk main/http.c DoS (AST-2014-001)
2014-03-14 00:00:00
Mandriva Linux Security Advisory : asterisk (MDVSA-2014:078)
2014-04-17 00:00:00
prion
prion
Code injection
2014-04-18 22:14:00
openvas
openvas
Fedora Update for asterisk FEDORA-2014-3762
2014-03-25 00:00:00
Mageia: Security Advisory (MGASA-2014-0172)
2022-01-28 00:00:00
Fedora Update for asterisk FEDORA-2014-3779
2014-03-25 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: asterisk-11.8.1-1.fc19
2014-03-21 09:29:33
[SECURITY] Fedora 20 Update: asterisk-11.8.1-1.fc20
2014-03-21 09:36:05
mageia
mageia
Updated asterisk packages fix security vulnerabilities
2014-04-15 22:22:45
Updated asterisk packages fix security vulnerabilities
2014-04-15 22:22:45
freebsd
freebsd
asterisk -- multiple vulnerabilities
2014-03-10 00:00:00
gentoo
gentoo
Asterisk: Denial of service
2014-05-03 00:00:00
osv
osv
asterisk - security update
2016-05-03 00:00:00
debian
debian
[SECURITY] [DLA 455-1] asterisk security update
2016-05-03 20:31:18