The STUN implementation in Asterisk 1.4.x prior to 1.4.8, AsteriskNOW before beta7, Appliance Developer Kit prior to 0.5.0, and s800i prior to 1.0.2 allows remote malicious users to cause a denial of service (crash) via a crafted STUN length attribute in a STUN packet sent on an RTP port.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
asterisk asterisk 1.0.7 |
||
asterisk asterisk 1.0.8 |
||
asterisk asterisk 1.2.13 |
||
asterisk asterisk 1.2.14 |
||
asterisk asterisk 1.2.8 |
||
asterisk asterisk 1.2.9 |
||
asterisk asterisk 1.4.1 |
||
asterisk asterisk b.2.2.0 |
||
asterisk asterisknow beta_5 |
||
asterisk asterisk 1.0 |
||
asterisk asterisk 1.0.9 |
||
asterisk asterisk 1.2.0_beta1 |
||
asterisk asterisk 1.2.15 |
||
asterisk asterisk 1.2.16 |
||
asterisk asterisk 1.4.2 |
||
asterisk asterisk 1.4.4_2007-04-27 |
||
asterisk asterisknow beta_6 |
||
asterisk asterisk appliance developer kit |
||
asterisk asterisk 1.0.12 |
||
asterisk asterisk 1.0.6 |
||
asterisk asterisk 1.2.11 |
||
asterisk asterisk 1.2.12 |
||
asterisk asterisk 1.2.6 |
||
asterisk asterisk 1.2.7 |
||
asterisk asterisk b.1.3.2 |
||
asterisk asterisk b.1.3.3 |
||
asterisk asterisk 1.0.10 |
||
asterisk asterisk 1.0.11 |
||
asterisk asterisk 1.2.0_beta2 |
||
asterisk asterisk 1.2.10 |
||
asterisk asterisk 1.2.17 |
||
asterisk asterisk 1.2.5 |
||
asterisk asterisk 1.4_beta |
||
asterisk asterisk a |
||
asterisk s800i appliance 1.0.1 |
||
asterisk s800i appliance 1.0 |
Vulmon