This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:asterisk:asterisk_business_edition:b.2.3.1
Detail
VendorAsteriskFirst view 2007-12-19
ProductAsterisk Business EditionLast view2009-01-14
Versionb.2.3.1TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:asterisk:asterisk_business_edition

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
52009-01-14CVE-2009-0041NetworkLowNone Requ...
7.82008-07-24CVE-2008-3264NetworkLowNone Requ...
4.32008-06-04CVE-2008-2119NetworkMediumNone Requ...
7.12008-04-23CVE-2008-1923NetworkMediumNone Requ...
4.32008-04-23CVE-2008-1897NetworkMediumNone Requ...
Hide | Show 2 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
8.82008-03-19CVE-2008-1332NetworkMediumNone Requ...
4.32007-12-19CVE-2007-6430NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
42% (3)CWE-287Improper Authentication
14% (1)CWE-264Permissions, Privileges, and Access Controls
14% (1)CWE-200Information Exposure
14% (1)CWE-20Improper Input Validation
14% (1)CWE-16Configuration

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:7422DSA-1563 asterisk -- programming error
oval:org.mitre.oval:def:20041DSA-1563-1 asterisk - denial of service

Open Source Vulnerability Database (OSVDB)

idDescription
51373Asterisk IAX2 User Account Enumeration Weakness
47254Asterisk IAX2 FWDOWNL Request Spoofing Remote DoS
46014Asterisk Pedantic Parsing SIP INVITE Message Handling Remote DoS
44649Asterisk Open Source IAX2 Channel Driver (chan_iax2) Spoofed ACK Response Han...
44648Asterisk IAX2 Channel Driver (chan_iax2) Spoofed NEW Message Remote DoS
Hide | Show 2 More...
idDescription
43415Asterisk SIP Channel Driver Unauthenticated Call Remote Privilege Escalation
39519Asterisk Host Based Registration Database Security Bypass

OpenVAS Exploits

idDescription
2009-12-30Name : Debian Security Advisory DSA 1952-1 (asterisk)
File : nvt/deb_1952_1.nasl
2009-12-14Name : Fedora Core 10 FEDORA-2009-12461 (asterisk)
File : nvt/fcore_2009_12461.nasl
2009-12-03Name : Fedora Core 10 FEDORA-2009-11126 (asterisk)
File : nvt/fcore_2009_11126.nasl
2009-09-28Name : Fedora Core 10 FEDORA-2009-9374 (asterisk)
File : nvt/fcore_2009_9374.nasl
2009-05-05Name : Gentoo Security Advisory GLSA 200905-01 (asterisk)
File : nvt/glsa_200905_01.nasl
Hide | Show 11 More...
idDescription
2009-02-17Name : Fedora Update for asterisk FEDORA-2008-6676
File : nvt/gb_fedora_2008_6676_asterisk_fc8.nasl
2009-02-17Name : Fedora Update for asterisk FEDORA-2008-6853
File : nvt/gb_fedora_2008_6853_asterisk_fc9.nasl
2009-02-17Name : Fedora Update for asterisk FEDORA-2008-3365
File : nvt/gb_fedora_2008_3365_asterisk_fc7.nasl
2009-02-17Name : Fedora Update for asterisk FEDORA-2008-3390
File : nvt/gb_fedora_2008_3390_asterisk_fc8.nasl
2009-02-16Name : Fedora Update for asterisk FEDORA-2008-2554
File : nvt/gb_fedora_2008_2554_asterisk_fc8.nasl
2009-02-16Name : Fedora Update for asterisk FEDORA-2008-2620
File : nvt/gb_fedora_2008_2620_asterisk_fc7.nasl
2009-02-13Name : Fedora Core 9 FEDORA-2009-0973 (asterisk)
File : nvt/fcore_2009_0973.nasl
2009-02-13Name : Fedora Core 10 FEDORA-2009-0984 (asterisk)
File : nvt/fcore_2009_0984.nasl
2008-09-24Name : Gentoo Security Advisory GLSA 200804-13 (asterisk)
File : nvt/glsa_200804_13.nasl
2008-05-12Name : Debian Security Advisory DSA 1563-1 (asterisk)
File : nvt/deb_1563_1.nasl
2008-03-27Name : Debian Security Advisory DSA 1525-1 (asterisk)
File : nvt/deb_1525_1.nasl

Snort® IPS/IDS

DateDescription
2014-01-10Digium Asterisk IAX2 ack response denial of service attempt
RuleID : 16445 - Type : PROTOCOL-VOIP - Revision : 11

Nessus® Vulnerability Scanner

idDescription
2010-02-24Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1952.nasl - Type : ACT_GATHER_INFO
2009-05-04Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200905-01.nasl - Type : ACT_GATHER_INFO
2009-04-23Name : The remote Fedora host is missing a security update.
File : fedora_2009-0984.nasl - Type : ACT_GATHER_INFO
2009-02-13Name : The remote Fedora host is missing one or more security updates.
File : fedora_2009-0973.nasl - Type : ACT_GATHER_INFO
2008-08-15Name : The remote openSUSE host is missing a security update.
File : suse_asterisk-5524.nasl - Type : ACT_GATHER_INFO
Hide | Show 14 More...
idDescription
2008-07-31Name : The remote Fedora host is missing a security update.
File : fedora_2008-6853.nasl - Type : ACT_GATHER_INFO
2008-07-24Name : The remote VoIP service can be abused to conduct an amplification attack agai...
File : asterisk_iax2_spoofed_fwdownl.nasl - Type : ACT_ATTACK
2008-07-24Name : The remote Fedora host is missing a security update.
File : fedora_2008-6676.nasl - Type : ACT_GATHER_INFO
2008-05-07Name : It is possible to bypass authentication and make calls using the remote VoIP ...
File : asterisk_sip_auth_bypass.nasl - Type : ACT_ATTACK
2008-05-06Name : The remote VoIP service can be abused to conduct an amplification attack agai...
File : asterisk_iax2_spoofed_handshake.nasl - Type : ACT_ATTACK
2008-05-02Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1563.nasl - Type : ACT_GATHER_INFO
2008-05-01Name : The remote Fedora host is missing a security update.
File : fedora_2008-3365.nasl - Type : ACT_GATHER_INFO
2008-05-01Name : The remote Fedora host is missing a security update.
File : fedora_2008-3390.nasl - Type : ACT_GATHER_INFO
2008-04-17Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200804-13.nasl - Type : ACT_GATHER_INFO
2008-04-17Name : The remote openSUSE host is missing a security update.
File : suse_asterisk-5169.nasl - Type : ACT_GATHER_INFO
2008-03-26Name : The remote Fedora host is missing a security update.
File : fedora_2008-2554.nasl - Type : ACT_GATHER_INFO
2008-03-26Name : The remote Fedora host is missing a security update.
File : fedora_2008-2620.nasl - Type : ACT_GATHER_INFO
2008-03-21Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1525.nasl - Type : ACT_GATHER_INFO
2008-03-07Name : The remote openSUSE host is missing a security update.
File : suse_asterisk-5062.nasl - Type : ACT_GATHER_INFO