This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:digium:asterisk:1.4.25 |
| Detail | |||
|---|---|---|---|
| Vendor | Digium | First view | 2009-11-10 |
| Product | Asterisk | Last view | 2012-09-18 |
| Version | 1.4.25 | Type | Application |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:digium:asterisk | ||
Activity : Yearly
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 4.3 | 2012-09-18 | CVE-2012-1183 | Network | Medium | None Requ... | |
| 5 | 2011-12-14 | CVE-2011-4597 | Network | Low | None Requ... | |
| 5 | 2011-07-06 | CVE-2011-2666 | Network | Low | None Requ... | |
| 5 | 2011-07-06 | CVE-2011-2536 | Network | Low | None Requ... | |
| 5 | 2011-07-06 | CVE-2011-2535 | Network | Low | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 9 | 2011-04-26 | CVE-2011-1599 | Network | Low | Requires ... | |
| 5 | 2011-04-26 | CVE-2011-1507 | Network | Low | None Requ... | |
| 6.8 | 2011-03-15 | CVE-2011-1147 | Network | Medium | None Requ... | |
| 6 | 2011-01-20 | CVE-2011-0495 | Network | Medium | Requires ... | |
| 5 | 2010-02-23 | CVE-2010-0685 | Network | Low | None Requ... | |
| 5 | 2009-12-02 | CVE-2009-4055 | Network | Low | None Requ... | |
| 5 | 2009-11-10 | CVE-2009-3727 | Network | Low | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 30% (3) | CWE-200 | Information Exposure |
| 30% (3) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 20% (2) | CWE-20 | Improper Input Validation |
| 10% (1) | CWE-399 | Resource Management Errors |
| 10% (1) | CWE-16 | Configuration |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 77597 | Asterisk Request Response Port SIP Peer Enumeration |
| 74352 | Asterisk SIP Channel Driver Default Configuration Invalid SIP Request Usernam... |
| 73434 | Asterisk Multiple Products Manager Interface manager.c Originate Action Remot... |
| 73433 | Asterisk Multiple Products Unauthenticated Session Connection Saturation Remo... |
| 73309 | Asterisk channels/chan_iax2.c iax2_setoption() Function Invalid Pointer DoS |
| id | Description |
|---|---|
| 73257 | Asterisk SIP Multiple Message Response Username Enumeration |
| 70968 | Asterisk main/udptl.c Multiple Function UPDTL Packet Handling Overflow |
| 70518 | Asterisk main/utils.c ast_uri_encode() Function Caller ID Information Overflow |
| 62451 | Asterisk Dialplan Wildcard Pattern Configuration Manipulation |
| 60569 | Asterisk rtp.c RTP Comfort Noise Payload Remote DoS |
| 59697 | Asterisk SIP REGISTER Response Username Enumeration Weakness |
