Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asterisk asterisk 1.6.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-1333
Format string vulnerability in Asterisk Open Source 1.6.x prior to 1.6.0-beta6 might allow remote malicious users to execute arbitrary code via logging messages that are not properly handled by (1) the ast_verbose logging API call, or (2) the astman_append function.
Asterisk Open Source 1.6.0 Beta4
Asterisk Open Source 1.6.0 Beta3
Asterisk Open Source 1.6.0 Beta5
Asterisk Open Source 1.6.0 Beta2
Asterisk Open Source 1.6.0 Beta1
NA
CVE-2009-0871
The SIP channel driver in Asterisk Open Source 1.4.22, 1.4.23, and 1.4.23.1; 1.6.0 prior to 1.6.0.6; 1.6.1 prior to 1.6.1.0-rc2; and Asterisk Business Edition C.2.3, with the pedantic option enabled, allows remote authenticated users to cause a denial of service (crash) via a SIP...
Digium Asterisk 1.6.0
Digium Asterisk 1.6.1
Digium Asterisk C.2.3
Digium Asterisk 1.6.0.3
Digium Asterisk 1.4.22
Digium Asterisk 1.6.0.5
Digium Asterisk 1.6.0.2
Digium Asterisk 1.4.23
Digium Asterisk 1.6.0.1
Digium Asterisk 1.6.0.4
Digium Asterisk 1.4.23.1
NA
CVE-2010-0441
Asterisk Open Source 1.6.0.x prior to 1.6.0.22, 1.6.1.x prior to 1.6.1.14, and 1.6.2.x prior to 1.6.2.2, and Business Edition C.3 before C.3.3.2, allows remote malicious users to cause a denial of service (daemon crash) via an SIP T.38 negotiation with an SDP FaxMaxDatagram field...
Asterisk Asterisk 1.6.0.18
Asterisk Asterisk 1.6.1.13
Asterisk Asterisk 1.6.0.6
Asterisk Asterisk 1.6.1.12
Asterisk Asterisk 1.6.1.9
Asterisk Asterisk 1.6.0.14
Asterisk Asterisk C.3.3.3
Asterisk Asterisk 1.6.0.5
Asterisk Asterisk 1.6.0.18-rc2
Asterisk Asterisk 1.6.1.10-rc2
Asterisk Asterisk 1.6.1.12-rc1
Asterisk Asterisk 1.6.1.10
Asterisk Asterisk 1.6.1.7-rc1
Asterisk Asterisk 1.6.0.19
Asterisk Asterisk 1.6.0.21-rc1
Asterisk Asterisk 1.6.10-rc1
Asterisk Asterisk 1.6.0.1
Asterisk Asterisk 1.6.0.7
Asterisk Asterisk 1.6.0.12
Asterisk Asterisk 1.6.1.7-rc2
Asterisk Asterisk 1.6.0.13
Asterisk Asterisk 1.6.1.10-rc1
NA
CVE-2010-1224
main/acl.c in Asterisk Open Source 1.6.0.x prior to 1.6.0.25, 1.6.1.x prior to 1.6.1.17, and 1.6.2.x prior to 1.6.2.5 does not properly enforce remote host access controls when CIDR notation "/0" is used in permit= and deny= configuration rules, which causes an improper...
Digium Asterisk 1.6.2.0
Digium Asterisk 1.6.2.1
Digium Asterisk 1.6.0.21
Digium Asterisk 1.6.1.8
Digium Asterisk 1.6.0.19
Digium Asterisk 1.6.1.7
Digium Asterisk 1.6.1.12
Digium Asterisk 1.6.2.4
Digium Asterisk 1.6.0.18
Digium Asterisk 1.6.0.10
Digium Asterisk 1.6.1.15
Digium Asterisk 1.6.0
Digium Asterisk 1.6.1.2
Digium Asterisk 1.6.1.6
Digium Asterisk 1.6.1.5
Digium Asterisk 1.6.0.23
Digium Asterisk 1.6.0.5
Digium Asterisk 1.6.0.14
Digium Asterisk 1.6.1.14
Digium Asterisk 1.6.0.16
Digium Asterisk 1.6.0.7
Digium Asterisk 1.6.1.10
NA
CVE-2008-1390
The AsteriskGUI HTTP server in Asterisk Open Source 1.4.x prior to 1.4.19-rc3 and 1.6.x prior to 1.6.0-beta6, Business Edition C.x.x before C.1.6, AsteriskNOW prior to 1.0.2, Appliance Developer Kit before revision 104704, and s800i 1.0.x prior to 1.1.0.2 generates insufficiently...
Asterisk Asterisk 1.4.12
Asterisk Asterisk 1.4.13
Asterisk Asterisk Appliance Developer Kit 0.3
Asterisk Asterisk Appliance Developer Kit 0.6
Asterisk Asterisk 1.4.18.1
Asterisk S800i 1.0
Asterisk Asterisknow Beta 7
Asterisk S800i 1.0.2
Asterisk Asterisk 1.6
Asterisk Asterisk 1.4.11
Asterisk Asterisk 1.4 Revision 95946
Asterisk Asterisknow Beta 6
Asterisk Asterisknow Beta 5
Asterisk Asterisk 1.4.3
Asterisk Asterisk 1.4 Beta
Asterisk Asterisk Business Edition C.1.0-beta8
Asterisk Asterisk 1.4.14
Asterisk S800i 1.1.0
Asterisk Asterisk 1.4.5
Asterisk Asterisk 1.4.9
Asterisk Asterisk 1.4.6
Asterisk Asterisk 1.4.17
NA
CVE-2009-4055
rtp.c in Asterisk Open Source 1.2.x prior to 1.2.37, 1.4.x prior to 1.4.27.1, 1.6.0.x prior to 1.6.0.19, and 1.6.1.x prior to 1.6.1.11; Business Edition B.x.x before B.2.5.13, C.2.x.x before C.2.4.6, and C.3.x.x before C.3.2.3; and s800i 1.3.x prior to 1.3.0.6 allows remote malic...
Digium Asterisk 1.2.1
Digium Asterisk 1.6.0
Digium Asterisk 1.2.27
Digium Asterisk 1.4.5
Digium Asterisk 1.4.22
Digium Asterisk 1.2.11
Digium Asterisk 1.6.1.0
Digium Asterisk 1.4.26
Digium Asterisk 1.6.1.8
Digium Asterisk 1.2.0
Digium Asterisk 1.2.26.2
Digium Asterisk 1.2.26
Digium Asterisk 1.2.12
Digium Asterisk 1.6.1.7
Digium Asterisk 1.6.1.5
Digium Asterisk 1.2.36
Digium Asterisk 1.2.21.1
Digium Asterisk 1.4.0
Digium Asterisk 1.2.30.1
Digium Asterisk 1.4.26.2
Digium Asterisk 1.2.31.1
Digium Asterisk 1.4.19.2
NA
CVE-2009-2346
The IAX2 protocol implementation in Asterisk Open Source 1.2.x prior to 1.2.35, 1.4.x prior to 1.4.26.2, 1.6.0.x prior to 1.6.0.15, and 1.6.1.x prior to 1.6.1.6; Business Edition B.x.x before B.2.5.10, C.2.x before C.2.4.3, and C.3.x before C.3.1.1; and s800i 1.3.x prior to 1.3.0...
Asterisk Opensource 1.4.26.1
Asterisk Open Source 1.4.22
Asterisk Open Source 1.4.23
Asterisk Open Source 1.2.4
Asterisk Open Source 1.2.8
Asterisk Asterisk C.1.0 Beta7
Asterisk Open Source 1.2.16
Asterisk Asterisk B.2.5.9
Asterisk Open Source 1.6.0
Asterisk Asterisk B.2.5.8
Asterisk Open Source 1.2.14
Asterisk Opensource 1.4.23.2
Asterisk Open Source 1.2.30.2
Asterisk Open Source 1.4.19.1
Asterisk Opensource 1.4.24.1
Asterisk Open Source 1.4.19
Asterisk Open Source 1.2.20
Asterisk Open Source 1.2.12
Asterisk Open Source 1.2.19
Asterisk Asterisk C.2.1.2.1
Asterisk Open Source 1.2.15
Asterisk Open Source 1.2.9.1
NA
CVE-2011-2529
chan_sip.c in the SIP channel driver in Asterisk Open Source 1.6.x prior to 1.6.2.18.1 and 1.8.x prior to 1.8.4.3 does not properly handle '\0' characters in SIP packets, which allows remote malicious users to cause a denial of service (memory corruption) or possibly ha...
Digium Asterisk 1.6.0
Digium Asterisk 1.6.2.16.2
Digium Asterisk 1.6.2.0
Digium Asterisk 1.6.1
Digium Asterisk 1.6.1.0
Digium Asterisk 1.6.2.1
Digium Asterisk 1.6.0.21
Digium Asterisk 1.6.1.8
Digium Asterisk 1.6.0.19
Digium Asterisk 1.6.1.7
Digium Asterisk 1.6.1.5
Digium Asterisk 1.6.1.12
Digium Asterisk 1.6.2.4
Digium Asterisk 1.6.2.6
Digium Asterisk 1.6.0.14
Digium Asterisk 1.6.1.3
Digium Asterisk 1.6.0.3
Digium Asterisk 1.6.2.16
Digium Asterisk 1.6.2.17
Digium Asterisk 1.6.0.18
Digium Asterisk 1.6.0.10
Digium Asterisk 1.6.1.15
NA
CVE-2009-3727
Asterisk Open Source 1.2.x prior to 1.2.35, 1.4.x prior to 1.4.26.3, 1.6.0.x prior to 1.6.0.17, and 1.6.1.x prior to 1.6.1.9; Business Edition A.x.x, B.x.x before B.2.5.12, C.2.x.x before C.2.4.5, and C.3.x.x before C.3.2.2; AsteriskNOW 1.5; and s800i 1.3.x prior to 1.3.0.5 gener...
Digium Asterisk 1.2.1
Digium Asterisk 1.6.0
Digium Asterisk 1.2.27
Digium Asterisk 1.4.5
Digium Asterisk 1.4.22
Digium Asterisk 1.2.11
Digium Asterisk 1.6.1.0
Digium Asterisk 1.4.26
Digium Asterisk 1.6.1.8
Digium Asterisk 1.2.0
Digium Asterisk 1.2.26.2
Digium Asterisk 1.2.26
Digium Asterisk 1.2.12
Digium Asterisk 1.6.1.7
Digium Asterisk 1.6.1.5
Digium Asterisk 1.2.21.1
Digium Asterisk 1.4.0
Digium Asterisk 1.2.30.1
Digium Asterisk 1.4.26.2
Digium Asterisk 1.2.31.1
Digium Asterisk 1.4.19.2
Digium Asterisk 1.2.29
NA
CVE-2010-0685
The design of the dialplan functionality in Asterisk Open Source 1.2.x, 1.4.x, and 1.6.x; and Asterisk Business Edition B.x.x and C.x.x, when using the ${EXTEN} channel variable and wildcard pattern matches, allows context-dependent malicious users to inject strings into the dial...
Digium Asterisk 1.2.1
Digium Asterisk 1.2.27
Digium Asterisk 1.4.5
Digium Asterisk 1.2.11
Digium Asterisk 1.2.0
Digium Asterisk 1.2.26.2
Digium Asterisk 1.2.26
Digium Asterisk 1.2.12
Digium Asterisk 1.2.36
Digium Asterisk 1.2.21.1
Digium Asterisk 1.2.30.1
Digium Asterisk 1.2.31.1
Digium Asterisk 1.2.29
Digium Asterisk 1.2.10
Digium Asterisk 1.2.28
Digium Asterisk 1.4.16
Digium Asterisk 1.4.3
Digium Asterisk 1.2.21
Digium Asterisk 1.2.3
Digium Asterisk 1.2.20
Digium Asterisk 1.2.13
Digium Asterisk 1.2.22
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »