Описание
The Manager Interface in Asterisk before 1.2.18 and 1.4.x before 1.4.3 allows remote attackers to cause a denial of service (crash) by using MD5 authentication to authenticate a user that does not have a password defined in manager.conf, resulting in a NULL pointer dereference.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | released | 1:1.4.3dfsg-1 |
| edgy | released | 1.2.12.1.dfsg-1ubuntu1.4 |
| feisty | released | 1.2.16~dfsg-1ubuntu3.1 |
| gutsy | released | 1:1.4.3dfsg-1 |
| hardy | released | 1:1.4.3dfsg-1 |
| intrepid | released | 1:1.4.3dfsg-1 |
| jaunty | released | 1:1.4.3dfsg-1 |
| karmic | released | 1:1.4.3dfsg-1 |
| upstream | released | 1.4.3 |
Показывать по
Ссылки на источники
EPSS
7.8 High
CVSS2
Связанные уязвимости
The Manager Interface in Asterisk before 1.2.18 and 1.4.x before 1.4.3 allows remote attackers to cause a denial of service (crash) by using MD5 authentication to authenticate a user that does not have a password defined in manager.conf, resulting in a NULL pointer dereference.
The Manager Interface in Asterisk before 1.2.18 and 1.4.x before 1.4.3 ...
The Manager Interface in Asterisk before 1.2.18 and 1.4.x before 1.4.3 allows remote attackers to cause a denial of service (crash) by using MD5 authentication to authenticate a user that does not have a password defined in manager.conf, resulting in a NULL pointer dereference.
EPSS
7.8 High
CVSS2