CVE-2011-1175

Опубликовано: 31 мар. 2011

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

tcptls.c in the TCP/TLS server in Asterisk Open Source 1.6.1.x before 1.6.1.23, 1.6.2.x before 1.6.2.17.1, and 1.8.x before 1.8.3.1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) by establishing many short TCP sessions to services that use a certain TLS API.

Комментарий

Per: http://cwe.mitre.org/data/definitions/476.html 'CWE-476: NULL Pointer Dereference'

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:digium:asterisk:1.6.1:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1:beta1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1:beta2:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1:beta3:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1:beta4:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.0:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.0:rc2:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.0:rc3:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.0:rc4:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.0:rc5:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.1:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.2:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.3:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.4:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.5:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.5:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.6:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.7:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.7:rc2:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.8:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.9:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.10:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.10:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.10:rc2:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.10:rc3:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.11:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.12:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.12:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.13:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.13:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.14:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.15:rc2:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.16:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.17:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.18:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.18:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.18:rc2:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.19:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.19:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.19:rc2:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.19:rc3:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.20:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.20:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.20:rc2:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.21:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.1.22:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:a:digium:asterisk:1.6.2.0:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.0:rc2:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.0:rc3:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.0:rc4:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.0:rc5:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.0:rc6:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.0:rc7:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.0:rc8:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.1:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.1:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.2:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.3:rc2:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.4:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.5:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.6:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.6:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.6:rc2:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.15:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.16:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.16:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.16.1:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.17:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.17:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.17:rc2:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.6.2.17:rc3:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:a:digium:asterisk:1.8.0:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.0:beta1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.0:beta2:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.0:beta3:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.0:beta4:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.0:beta5:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.0:rc2:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.0:rc3:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.0:rc4:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.0:rc5:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.1:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.1:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.1.1:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.1.2:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.2:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.2.1:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.2.2:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.2.3:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.3:*:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.3:rc1:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.3:rc2:*:*:*:*:*:*

cpe:2.3:a:digium:asterisk:1.8.3:rc3:*:*:*:*:*:*

EPSS

Процентиль: 51%

0.00284

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2011-1175

ubuntu

больше 14 лет назад

CVE-2011-1175

debian

больше 14 лет назад

tcptls.c in the TCP/TLS server in Asterisk Open Source 1.6.1.x before ...

GHSA-cfj4-pwcj-qhgc

github

больше 3 лет назад

EPSS

Процентиль: 51%

0.00284

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other