Buffer overflow in Asterisk Appliance_s800i
CVE-2009-2346
The IAX2 protocol implementation in Asterisk Open Source 1.2.x before 1.2.35, 1.4.x before 1.4.26.2, 1.6.0.x before 1.6.0.15, and 1.6.1.x before 1.6.1.6; Business Edition B.x.x before B.2.5.10, C.2.x before C.2.4.3, and C.3.x before C.3.1…
Vulnerability class: Buffer Overflow
EPSS: 0.026 (83.3th percentile) — read the EPSS interpretation.
Affected products
- Asterisk Appliance_s800i — versions 1.3, 1.3.0.2
- Asterisk — versions b.1.3.2, b.1.3.3, b.2.2.0
- Asterisk Open_source — versions 1.2.0, 1.2.1, 1.2.2
- Asterisk Opensource — versions 1.4.23.2, 1.4.24, 1.4.24.1
- Sangoma Asterisk — versions 1.6.1, 1.6.1.4
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (vdb-entry, x_refsource_SECTRACK)
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
- cve@mitre.org (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
- cve@mitre.org (vdb-entry, x_refsource_BID)
- cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)