Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
digium asterisk 0.1.7 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2003-0779
SQL injection vulnerability in the Call Detail Record (CDR) logging functionality for Asterisk allows remote malicious users to execute arbitrary SQL via a CallerID string.
Digium Asterisk 0.3
Digium Asterisk 0.4
Digium Asterisk 0.1.7
Digium Asterisk 0.1.8
Digium Asterisk 0.1.9.1
Digium Asterisk 0.1.9
Digium Asterisk 0.2
NA
CVE-2006-5444
Integer overflow in the get_input function in the Skinny channel driver (chan_skinny.c) in Asterisk 1.0.x prior to 1.0.12 and 1.2.x prior to 1.2.13, as used by Cisco SCCP phones, allows remote malicious users to execute arbitrary code via a certain dlen value that passes a signed...
Digium Asterisk 0.4
Digium Asterisk 0.7
Digium Asterisk 1.0.8
Digium Asterisk 1.0.9
Digium Asterisk 1.2.9
Digium Asterisk 1.2 Beta1
Digium Asterisk 0.2
Digium Asterisk 0.3
Digium Asterisk 1.0.11
Digium Asterisk 1.0.7
Digium Asterisk 1.2.7
Digium Asterisk 1.2.8
Digium Asterisk 0.1.7
Digium Asterisk 0.1.8
Digium Asterisk 0.7.1
Digium Asterisk 0.7.2
Digium Asterisk 1.2.10
Digium Asterisk 1.2.11
Digium Asterisk 1.2 Beta2
Digium Asterisk 0.1.9
Digium Asterisk 0.1.9.1
Digium Asterisk 0.9
1 EDB exploit
NA
CVE-2005-3559
Directory traversal vulnerability in vmail.cgi in Asterisk 1.0.9 up to and including 1.2.0-beta1 allows remote malicious users to access WAV files via a .. (dot dot) in the folder parameter.
Digium Asterisk 0.1.1
Digium Asterisk 0.1.10
Digium Asterisk 0.1.11
Digium Asterisk 0.1.7
Digium Asterisk 0.1.8
Digium Asterisk 0.7.1
Digium Asterisk 0.7.2
Digium Asterisk 1.0.6
Digium Asterisk 1.0.7
Digium Asterisk 1.0.8
Digium Asterisk 0.1.0
Digium Asterisk 0.1.5
Digium Asterisk 0.1.6
Digium Asterisk 0.5.0
Digium Asterisk 0.7.0
Digium Asterisk 1.0.4
Digium Asterisk 1.0.5
Digium Asterisk 0.1.12
Digium Asterisk 0.1.2
Digium Asterisk 0.1.9
Digium Asterisk 0.2.0
Digium Asterisk 1.0.0
1 EDB exploit
NA
CVE-2006-1827
Integer signedness error in format_jpeg.c in Asterisk 1.2.6 and previous versions allows remote malicious users to execute arbitrary code via a length value that passes a length check as a negative number, but triggers a buffer overflow when it is used as an unsigned length.
Digium Asterisk 0.1.10
Digium Asterisk 0.1.11
Digium Asterisk 0.1.12
Digium Asterisk 0.1.8
Digium Asterisk 0.1.9
Digium Asterisk 0.4.0
Digium Asterisk 0.5.0
Digium Asterisk 1.0.3
Digium Asterisk 1.0.4
Digium Asterisk 1.0.5
Digium Asterisk 1.2.0 Beta1
Digium Asterisk
Digium Asterisk 0.1.0
Digium Asterisk 0.1.1
Digium Asterisk 0.1.6
Digium Asterisk 0.1.7
Digium Asterisk 0.3.0
Digium Asterisk 0.4
Digium Asterisk 1.0.1
Digium Asterisk 1.0.2
Digium Asterisk 1.0 Rc1
Digium Asterisk 1.0 Rc2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started