Asterisk Open Source 1.4.5 up to and including 1.4.11, when configured to use an IMAP voicemail storage backend, allows remote malicious users to cause a denial of service via an e-mail with an "invalid/corrupted" MIME body, which triggers a crash when the recipient listens to voicemail.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
asterisk asterisk 1.4.10 |
||
asterisk asterisk 1.4.11 |
||
asterisk asterisk 1.4.9 |
||
asterisk asterisk 1.4.5 |
||
asterisk asterisk 1.4.6 |
||
asterisk asterisk 1.4.7 |
||
asterisk asterisk 1.4.8 |
Vulmon