CVE search results

131 – 140 of 193 results

Detailed view

Sort by:

CVE-2011-2666

Low priority

Some fixes available 3 of 4

The default configuration of the SIP channel driver in Asterisk Open Source 1.4.x through 1.4.41.2 and 1.6.2.x through 1.6.2.18.2 does not enable the alwaysauthreject option, which allows remote attackers to enumerate...

1 affected package

asterisk

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
asterisk	—	—	—	—	—

CVE-2011-2665

Medium priority

Ignored

reqresp_parser.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.4.3 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a SIP packet with a Contact header that...

1 affected package

asterisk

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
asterisk	—	—	—	—	—

CVE-2011-2536

Low priority

Some fixes available 3 of 4

chan_sip.c in the SIP channel driver in Asterisk Open Source 1.4.x before 1.4.41.2, 1.6.2.x before 1.6.2.18.2, and 1.8.x before 1.8.4.4, and Asterisk Business Edition C.3.x before C.3.7.3, disregards the alwaysauthreject option...

1 affected package

asterisk

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
asterisk	—	—	—	—	—

CVE-2011-2535

Medium priority

Some fixes available 3 of 4

chan_iax2.c in the IAX2 channel driver in Asterisk Open Source 1.4.x before 1.4.41.1, 1.6.2.x before 1.6.2.18.1, and 1.8.x before 1.8.4.3, and Asterisk Business Edition C.3 before C.3.7.3, accesses a memory address contained in an...

1 affected package

asterisk

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
asterisk	—	—	—	—	—

CVE-2011-2529

Medium priority

Some fixes available 3 of 4

chan_sip.c in the SIP channel driver in Asterisk Open Source 1.6.x before 1.6.2.18.1 and 1.8.x before 1.8.4.3 does not properly handle '\0' characters in SIP packets, which allows remote attackers to cause a denial of service...

1 affected package

asterisk

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
asterisk	—	—	—	—	—

CVE-2011-2216

Medium priority

Ignored

reqresp_parser.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.4.2 does not initialize certain strings, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash)...

1 affected package

asterisk

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
asterisk	—	—	—	—	—

CVE-2011-1599

Medium priority

Some fixes available 3 of 6

manager.c in the Manager Interface in Asterisk Open Source 1.4.x before 1.4.40.1, 1.6.1.x before 1.6.1.25, 1.6.2.x before 1.6.2.17.3, and 1.8.x before 1.8.3.3 and Asterisk Business Edition C.x.x before C.3.6.4 does not properly...

1 affected package

asterisk

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
asterisk	—	—	—	—	—

CVE-2011-1507

Medium priority

Some fixes available 3 of 6

Asterisk Open Source 1.4.x before 1.4.40.1, 1.6.1.x before 1.6.1.25, 1.6.2.x before 1.6.2.17.3, and 1.8.x before 1.8.3.3 and Asterisk Business Edition C.x.x before C.3.6.4 do not restrict the number of unauthenticated sessions to...

1 affected package

asterisk

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
asterisk	—	—	—	—	—

CVE-2011-1175

Medium priority

Some fixes available 3 of 6

tcptls.c in the TCP/TLS server in Asterisk Open Source 1.6.1.x before 1.6.1.23, 1.6.2.x before 1.6.2.17.1, and 1.8.x before 1.8.3.1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash)...

1 affected package

asterisk

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
asterisk	—	—	—	—	—

CVE-2011-1174

Medium priority

Some fixes available 3 of 6

manager.c in Asterisk Open Source 1.6.1.x before 1.6.1.24, 1.6.2.x before 1.6.2.17.2, and 1.8.x before 1.8.3.2 allows remote attackers to cause a denial of service (CPU and memory consumption) via a series of manager sessions...

1 affected package

asterisk

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
asterisk	—	—	—	—	—

Export to JSON

Results by page:

Search CVE reports