Vulnerability in N/a
CVE-2006-5444
Integer overflow in the get_input function in the Skinny channel driver (chan_skinny.c) in Asterisk 1.0.x before 1.0.12 and 1.2.x before 1.2.13, as used by Cisco SCCP phones, allows remote attackers to execute arbitrary code via a certain…
EPSS: 0.871 (99.5th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 22480 (x_refsource_SECUNIA, third-party-advisory)
- ftp.digium.com/pub/asterisk/releases/ChangeLog-1.2.13 (x_refsource_CONFIRM)
- DSA-1229 (vendor-advisory, x_refsource_DEBIAN)
- GLSA-200610-15 (vendor-advisory, x_refsource_GENTOO)
- SUSE-SA:2006:069 (vendor-advisory, x_refsource_SUSE)
- 20617 (vdb-entry, x_refsource_BID)
- ADV-2006-4097 (vdb-entry, x_refsource_VUPEN)
- 22651 (x_refsource_SECUNIA, third-party-advisory)
- 29972 (x_refsource_OSVDB, vdb-entry)
- OpenPKG-SA-2006.024 (vendor-advisory, x_refsource_OPENPKG)