CVE-2012-5976 in Digium Asteriskinfo

Summary

Multiple stack consumption vulnerabilities in Asterisk Open Source 1.8.x before 1.8.19.1, 10.x before 10.11.1, and 11.x before 11.1.2; Certified Asterisk 1.8.11 before 1.8.11-cert10; and Asterisk Digiumphones 10.x-digiumphones before 10.11.1-digiumphones allow remote attackers to cause a denial of service (daemon crash) via TCP data using the (1) SIP, (2) HTTP, or (3) XMPP protocol.

Reservation

11/21/2012

Disclosure

01/04/2013

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
7246	Digium Asterisk AMI http.c ast_http_get_post_vars memory corruption	119	Proof-of-Concept	Official fix	CVE-2012-5976
7231	Digium Asterisk TCP Session memory corruption	119	Proof-of-Concept	Official fix	CVE-2012-5976

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Do you know our Splunk app?

Download it now for free!