Search:Software:Asterisk 1.4
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
See also
ASTERISK :
Asterisk 10.0
ASTERISK :
AsteriskNOW 1.5
ASTERISK :
Asterisk 1.8
ASTERISK :
AsteriskNOW 1.0
ASTERISK :
Asterisk 1.6
ASTERISK :
Asterisk 1,4
ASTERISK :
Asterisk s800i
ASTERISK :
Asterisk Appliance Developer Kit 0.4
ASTERISK :
Asterisk 1.3
ASTERISK :
Asterisk@Home 2.6
ASTERISK :
Asterisk 2.0
ASTERISK :
Asterisk 1.5
ASTERISK :
Asterisk 1.2
ASTERISK :
Asterisk 1.0
ASTERISK :
asterisk 0.4
Name:
ASTERISK
: Asterisk 1.4
Asterisk SIP processing security vulnerabilities
updated since 11.12.2011
DoS, information leakage.
Asterisk user account enumeration
Different replies on mismatched usernames and passwords.
6
!
Asterisk security vulnerabilities
updated since 26.04.2011
Privilege escalation DoS via resources exhaustion.
6
!
Asterisk buffer overflows
Multiple buffer overflows on UDPTL parsing.
7
!
Asterisk buffer overflow
Buffer overflow in SIP Caller ID.
Asterisk invalid ACL processing
/0 CIDR in ACL is processed in unpredictable way.
Asterisk dialplan modification
Atacker can control dialplan if ${EXTEN} macro is used.
Asterisk RTP DoS
Crash on RTP comfort noise payload processing.
Asterisk multiple security vulnerabilities
Information leak, crossite scripting.
Asterisk protection bypass
ACL restrictions were not applied to SIP INVITE messages.
Asterisk IAX2 DoS
15-bit call number resource exhaustion.
6
!
Asterisk SIP DoS
updated since 11.08.2009
Stack overlow (exhaustion) on SIP request processing.
Asterisk DoS
Crash on RTP text frames processing.
Asterisk VoIP server user accounts enumeration
Different replies for non-exstant SIP account and invalid password.
Asterisk VoIP server DoS
NULL pointer dereference on empty SIP INVITE header.
Asterisk user account enumeration
Different replies for invalid username and password in IAX2 authentication.
Asterisk voice server DoS
Crash on IAX2 processing
Asterisk multiple security vulnerabilities
Traffic amplification, DoS with resouurces exhaustion.
6
!
Asterisk IAX2 calls spoofing
Insuficient check of server ACK and weak call number generation allows blind spoofing.
Asterisk SIP Also transfer DoS
NULL pointer dereference on BYE message parsing.
6
!
Asterisk unauthorized access
IP restriction is not checked for users with no password configured.
Asterisk multiple security vulnerabilities
cdr_pgsql and res_config_pgsql SQL injection.
Asterisk cdr_addon_mysql SQL injection
SQL injection with destination number.
6
!
Asterisk malformed MIME boundary multiple buffer overflows and DoS
updated since 27.08.2007
Multiple buffer overflows and crash on malformed MIME boundary if IMAP storage is used for Voicemail.
Asterisk VoIP server Skinny protocol resources aexhaustions
SIP dialog history is stored in memory regardless of settings, leading to memory exhaustion.
Asterisk Skinny (SIP) VoIP protocol DoS
CAPABILITIES_RES_MESSAGE integer array overflow.
Asterisk VoIP server IAX2 DoS
NEW requests flood causes resources exhaustion.
7
!
Asterisk VoIP server multiple security vulnerabilities
Buffer overflow and DoS on IAX2 implementation, DoS in Skinny and STUN implementation.
7
!
Asterisk VoIP server buffer overflow
Multiple buffer overflows if T38 fax over SIP is enabled.
7
!
Asterisk multiple security vulnerabilities
Multiple buffer overflows on T.38 SDP SIP channels parsing. DoS in administration interface. Multiple security vulnerabilities in parsing SIP replies.
6
!
Asterisk PBX SIP DoS
updated since 04.03.2007
Application crash on malcrafted SIP packet.
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Nizhny Novgorod
Enter your search terms
Web
securityvulns.com
Submit search form
test server
