This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
Summuary | |
---|---|
CPE Name | cpe:/a:asterisk:opensource:1.4.22 |
Detail | |||
---|---|---|---|
Vendor | Asterisk | First view | 2009-08-12 |
Product | Opensource | Last view | 2009-08-12 |
Version | 1.4.22 | Type | Application |
Edition | |||
Language | |||
Update | |||
CPE Product | cpe:/a:asterisk:opensource |
Activity : Overall
Related : CVE
Date | Alert | Access Vector | Access Complexity | Authentication | ||
---|---|---|---|---|---|---|
7.8 | 2009-08-12 | CVE-2009-2726 | Network | Low | None Requ... |
CWE : Common Weakness Enumeration
% | id | Name |
---|---|---|
100% (1) | CWE-399 | Resource Management Errors |
CAPEC : Common Attack Pattern Enumeration & Classification
id | Name |
---|---|
CAPEC-2 | Inducing Account Lockout |
CAPEC-82 | Violating Implicit Assumptions Regarding XML Content (aka XML Denial of Servi... |
CAPEC-99 | XML Parser Attack |
CAPEC-119 | Resource Depletion |
CAPEC-121 | Locate and Exploit Test APIs |
id | Name |
---|---|
CAPEC-125 | Resource Depletion through Flooding |
CAPEC-130 | Resource Depletion through Allocation |
CAPEC-147 | XML Ping of Death |
CAPEC-197 | XEE (XML Entity Expansion) |
CAPEC-227 | Denial of Service through Resource Depletion |
CAPEC-228 | Resource Depletion through DTD Injection in a SOAP Message |
CAPEC-229 | XML Attribute Blowup |
Open Source Vulnerability Database (OSVDB)
id | Description |
---|---|
56991 | Asterisk Multiple Function Maximum Width Handling Remote DoS |
OpenVAS Exploits
id | Description |
---|---|
2011-03-09 | Name : Gentoo Security Advisory GLSA 201006-20 (asterisk) File : nvt/glsa_201006_20.nasl |
2009-09-28 | Name : Fedora Core 10 FEDORA-2009-9374 (asterisk) File : nvt/fcore_2009_9374.nasl |
2009-09-02 | Name : Asterisk SIP Channel Driver Denial Of Service Vulnerability (Linux) File : nvt/secpod_asterisk_sip_channel_driver_dos_vuln.nasl |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | CSeq buffer overflow attempt RuleID : 16351 - Type : PROTOCOL-VOIP - Revision : 11 |
2014-01-10 | Digium Asterisk SIP sscanf denial of service attempt RuleID : 16212 - Type : DOS - Revision : 2 |
2014-01-10 | Digium Asterisk SIP sscanf denial of service attempt RuleID : 16211 - Type : DOS - Revision : 2 |
2014-01-10 | Digium Asterisk SIP sscanf denial of service attempt RuleID : 16210 - Type : DOS - Revision : 2 |
2014-01-10 | CSeq buffer overflow attempt RuleID : 11971 - Type : PROTOCOL-VOIP - Revision : 8 |
Nessus® Vulnerability Scanner
id | Description |
---|---|
2010-06-04 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201006-20.nasl - Type : ACT_GATHER_INFO |
2009-09-28 | Name : The remote Fedora host is missing a security update. File : fedora_2009-9374.nasl - Type : ACT_GATHER_INFO |