Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
digium asterisk 1.2.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2898
The IAX2 channel driver (chan_iax2) for Asterisk 1.2.x prior to 1.2.9 and 1.0.x prior to 1.0.11 allows remote malicious users to cause a denial of service (crash) and execute arbitrary code via truncated IAX 2 (IAX2) video frames, which bypasses a length check and leads to a buff...
Digium Asterisk 1.2.0 Beta1
Digium Asterisk 1.0.9
Digium Asterisk 1.0.10
Digium Asterisk 1.2.8
Digium Asterisk 1.2.6
Digium Asterisk 1.0.8
Digium Asterisk 1.2.7
Digium Asterisk 1.2.0 Beta2
Digium Asterisk 1.0.7
NA
CVE-2006-5445
Unspecified vulnerability in the SIP channel driver (channels/chan_sip.c) in Asterisk 1.2.x prior to 1.2.13 and 1.4.x prior to 1.4.0-beta3 allows remote malicious users to cause a denial of service (resource consumption) via unspecified vectors that result in the creation of &quo...
Digium Asterisk 1.2.11
Digium Asterisk 1.2.0 Beta1
Digium Asterisk 1.2.12
Digium Asterisk 1.2.10
Digium Asterisk 1.2.9
Digium Asterisk 1.4.0
Digium Asterisk 1.4.0 Beta1
Digium Asterisk 1.4.0 Beta2
Digium Asterisk 1.2.8
Digium Asterisk 1.2.6
Digium Asterisk 1.2.7
Digium Asterisk 1.2.0 Beta2
Digium Asterisk 1.2.12.1
NA
CVE-2007-1306
Asterisk 1.4 prior to 1.4.1 and 1.2 prior to 1.2.16 allows remote malicious users to cause a denial of service (crash) by sending a Session Initiation Protocol (SIP) packet without a URI and SIP-version header, which results in a NULL pointer dereference.
Digium Asterisk 1.2.11
Digium Asterisk 1.2.0 Beta1
Digium Asterisk 1.2.12
Digium Asterisk 1.2.10
Digium Asterisk 1.2.9
Digium Asterisk 1.4.0
Digium Asterisk 1.2.13
Digium Asterisk 1.2 Beta2
Digium Asterisk 1.4.0 Beta1
Digium Asterisk 1.4.0 Beta2
Digium Asterisk 1.2.8
Digium Asterisk 1.2.6
Digium Asterisk 1.2.15
Digium Asterisk 1.2.7
Digium Asterisk 1.2.14
Digium Asterisk 1.2 Beta1
Digium Asterisk 1.2.0 Beta2
Digium Asterisk 1.2.12.1
1 EDB exploit
NA
CVE-2006-4345
Stack-based buffer overflow in channels/chan_mgcp.c in MGCP in Asterisk 1.0 up to and including 1.2.10 allows remote malicious users to execute arbitrary code via a crafted audit endpoint (AUEP) response.
Digium Asterisk 1.2.0 Beta1
Digium Asterisk 1.2.10
Digium Asterisk 1.2.9
Digium Asterisk 1.0.9
Digium Asterisk 1.0.2
Digium Asterisk 1.0 Rc2
Digium Asterisk 1.0.10
Digium Asterisk 1.0.1
Digium Asterisk 1.0.3
Digium Asterisk 1.0.5
Digium Asterisk 1.2.8
Digium Asterisk 1.0.6
Digium Asterisk 1.2.6
Digium Asterisk 1.0.4
Digium Asterisk 1.0.8
Digium Asterisk 1.2.7
Digium Asterisk 1.2.0 Beta2
Digium Asterisk 1.0.0
Digium Asterisk 1.0.7
Digium Asterisk 1.0 Rc1
NA
CVE-2005-3559
Directory traversal vulnerability in vmail.cgi in Asterisk 1.0.9 up to and including 1.2.0-beta1 allows remote malicious users to access WAV files via a .. (dot dot) in the folder parameter.
Digium Asterisk 1.2.0 Beta1
Digium Asterisk 0.7.1
Digium Asterisk 0.1.9
Digium Asterisk 0.2.0
Digium Asterisk 0.1.3
Digium Asterisk 0.3.0
Digium Asterisk 0.7.2
Digium Asterisk 0.5.0
Digium Asterisk 1.0.9
Digium Asterisk 1.0.2
Digium Asterisk 0.1.11
Digium Asterisk 1.0 Rc2
Digium Asterisk 0.1.6
Digium Asterisk 1.0.1
Digium Asterisk 1.0.3
Digium Asterisk 1.0.5
Digium Asterisk 0.1.8
Digium Asterisk 0.1.12
Digium Asterisk 1.0.6
Digium Asterisk 0.1.0
Digium Asterisk 0.1.7
Digium Asterisk 1.0.4
1 EDB exploit
NA
CVE-2006-1827
Integer signedness error in format_jpeg.c in Asterisk 1.2.6 and previous versions allows remote malicious users to execute arbitrary code via a length value that passes a length check as a negative number, but triggers a buffer overflow when it is used as an unsigned length.
Digium Asterisk 0.4
Digium Asterisk 1.2.0 Beta1
Digium Asterisk
Digium Asterisk 0.7.1
Digium Asterisk 0.1.9
Digium Asterisk 0.2.0
Digium Asterisk 0.1.3
Digium Asterisk 0.3.0
Digium Asterisk 0.7.2
Digium Asterisk 0.5.0
Digium Asterisk 0.2
Digium Asterisk 1.0.9
Digium Asterisk 1.0.2
Digium Asterisk 0.1.11
Digium Asterisk 1.0 Rc2
Digium Asterisk 0.1.6
Digium Asterisk 0.1.9.1
Digium Asterisk 1.0.1
Digium Asterisk 1.0.3
Digium Asterisk 1.0.5
Digium Asterisk 0.1.8
Digium Asterisk 0.1.12
NA
CVE-2010-0685
The design of the dialplan functionality in Asterisk Open Source 1.2.x, 1.4.x, and 1.6.x; and Asterisk Business Edition B.x.x and C.x.x, when using the ${EXTEN} channel variable and wildcard pattern matches, allows context-dependent malicious users to inject strings into the dial...
Digium Asterisk 1.2.1
Digium Asterisk 1.2.27
Digium Asterisk 1.4.5
Digium Asterisk 1.2.11
Digium Asterisk 1.2.0
Digium Asterisk 1.2.26.2
Digium Asterisk 1.2.26
Digium Asterisk 1.2.12
Digium Asterisk 1.2.36
Digium Asterisk 1.2.21.1
Digium Asterisk 1.2.30.1
Digium Asterisk 1.2.31.1
Digium Asterisk 1.2.29
Digium Asterisk 1.2.10
Digium Asterisk 1.2.28
Digium Asterisk 1.4.16
Digium Asterisk 1.4.3
Digium Asterisk 1.2.21
Digium Asterisk 1.2.3
Digium Asterisk 1.2.20
Digium Asterisk 1.2.13
Digium Asterisk 1.2.22
NA
CVE-2009-4055
rtp.c in Asterisk Open Source 1.2.x prior to 1.2.37, 1.4.x prior to 1.4.27.1, 1.6.0.x prior to 1.6.0.19, and 1.6.1.x prior to 1.6.1.11; Business Edition B.x.x before B.2.5.13, C.2.x.x before C.2.4.6, and C.3.x.x before C.3.2.3; and s800i 1.3.x prior to 1.3.0.6 allows remote malic...
Digium Asterisk 1.2.1
Digium Asterisk 1.6.0
Digium Asterisk 1.2.27
Digium Asterisk 1.4.5
Digium Asterisk 1.4.22
Digium Asterisk 1.2.11
Digium Asterisk 1.6.1.0
Digium Asterisk 1.4.26
Digium Asterisk 1.6.1.8
Digium Asterisk 1.2.0
Digium Asterisk 1.2.26.2
Digium Asterisk 1.2.26
Digium Asterisk 1.2.12
Digium Asterisk 1.6.1.7
Digium Asterisk 1.6.1.5
Digium Asterisk 1.2.36
Digium Asterisk 1.2.21.1
Digium Asterisk 1.4.0
Digium Asterisk 1.2.30.1
Digium Asterisk 1.4.26.2
Digium Asterisk 1.2.31.1
Digium Asterisk 1.4.19.2
NA
CVE-2009-3727
Asterisk Open Source 1.2.x prior to 1.2.35, 1.4.x prior to 1.4.26.3, 1.6.0.x prior to 1.6.0.17, and 1.6.1.x prior to 1.6.1.9; Business Edition A.x.x, B.x.x before B.2.5.12, C.2.x.x before C.2.4.5, and C.3.x.x before C.3.2.2; AsteriskNOW 1.5; and s800i 1.3.x prior to 1.3.0.5 gener...
Digium Asterisk 1.2.1
Digium Asterisk 1.6.0
Digium Asterisk 1.2.27
Digium Asterisk 1.4.5
Digium Asterisk 1.4.22
Digium Asterisk 1.2.11
Digium Asterisk 1.6.1.0
Digium Asterisk 1.4.26
Digium Asterisk 1.6.1.8
Digium Asterisk 1.2.0
Digium Asterisk 1.2.26.2
Digium Asterisk 1.2.26
Digium Asterisk 1.2.12
Digium Asterisk 1.6.1.7
Digium Asterisk 1.6.1.5
Digium Asterisk 1.2.21.1
Digium Asterisk 1.4.0
Digium Asterisk 1.2.30.1
Digium Asterisk 1.4.26.2
Digium Asterisk 1.2.31.1
Digium Asterisk 1.4.19.2
Digium Asterisk 1.2.29
NA
CVE-2011-0495
Stack-based buffer overflow in the ast_uri_encode function in main/utils.c in Asterisk Open Source prior to 1.4.38.1, 1.4.39.1, 1.6.1.21, 1.6.2.15.1, 1.6.2.16.1, 1.8.1.2, 1.8.2.; and Business Edition before C.3.6.2; when running in pedantic mode allows remote authenticated users ...
Digium Asterisknow 1.5
Digium Asterisk
Fedoraproject Fedora 13
Fedoraproject Fedora 14
Debian Debian Linux 6.0
Digium S800i Firmware 1.2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started