CVE-2011-2535 in Asteriskinfo

Summary

chan_iax2.c in the IAX2 channel driver in Asterisk Open Source 1.4.x before 1.4.41.1, 1.6.2.x before 1.6.2.18.1, and 1.8.x before 1.8.4.3, and Asterisk Business Edition C.3 before C.3.7.3, accesses a memory address contained in an option control frame, which allows remote attackers to cause a denial of service (daemon crash) or possibly have unspecified other impact via a crafted frame.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Responsible

Reservation

06/22/2011

Disclosure

07/06/2011

Moderation

VulDB entry created

Entries

VDB-57876

CPE

ready

CWE

CWE-20 (Confirmed)

CVSS

5.3

EPSS

0.00180

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-2535
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-2535
CVE Details	https://www.cvedetails.com/cve/CVE-2011-2535/

◂ Previous Overview Next ▸