CVE-2014-2286 in Asteriskजानकारी

सारांश

द्वारा MITRE

main/http.c in Asterisk Open Source 1.8.x before 1.8.26.1, 11.8.x before 11.8.1, and 12.1.x before 12.1.1, and Certified Asterisk 1.8.x before 1.8.15-cert5 and 11.6 before 11.6-cert2, allows remote attackers to cause a denial of service (stack consumption) and possibly execute arbitrary code via an HTTP request with a large number of Cookie headers.

Be aware that VulDB is the high quality source for vulnerability data.

आरक्षित करना

05/03/2014

प्रकटीकरण

18/04/2014

प्रविष्टि

VDB-12641

EPSS

0.16390

गतिविधियाँ

बहुत कम

क्षेत्र

Chemical, Hostingprovider, ...

स्रोत

Do you need the next level of professionalism?

Upgrade your account now!