Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2007-1306
Description:Asterisk 1.4 before 1.4.1 and 1.2 before 1.2.16 allows remote attackers to cause a denial of service (crash) by sending a Session Initiation Protocol (SIP) packet without a URI and SIP-version header, which results in a NULL pointer dereference.
Test IDs: 1.3.6.1.4.1.25623.1.0.58577   1.3.6.1.4.1.25623.1.0.58152   1.3.6.1.4.1.25623.1.0.9999991  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2007-1306
BugTraq ID: 22838
http://www.securityfocus.com/bid/22838
CERT/CC vulnerability note: VU#228032
http://www.kb.cert.org/vuls/id/228032
Debian Security Information: DSA-1358 (Google Search)
http://www.debian.org/security/2007/dsa-1358
http://security.gentoo.org/glsa/glsa-200703-14.xml
http://labs.musecurity.com/advisories/MU-200703-01.txt
http://www.osvdb.org/33888
http://www.securitytracker.com/id?1017723
http://secunia.com/advisories/24380
http://secunia.com/advisories/24578
http://secunia.com/advisories/25582
SuSE Security Announcement: SUSE-SA:2007:034 (Google Search)
http://www.novell.com/linux/security/advisories/2007_34_asterisk.html
http://www.vupen.com/english/advisories/2007/0830
XForce ISS Database: asterisk-sip-channeldriver-dos(32830)
https://exchange.xforce.ibmcloud.com/vulnerabilities/32830




© 1998-2024 E-Soft Inc. All rights reserved.