CVE-2013-7100 in Asteriskthông tin

Tóm tắt

Bởi MITRE

Buffer overflow in the unpacksms16 function in apps/app_sms.c in Asterisk Open Source 1.8.x before 1.8.24.1, 10.x before 10.12.4, and 11.x before 11.6.1; Asterisk with Digiumphones 10.x-digiumphones before 10.12.4-digiumphones; and Certified Asterisk 1.8.x before 1.8.15-cert4 and 11.x before 11.2-cert3 allows remote attackers to cause a denial of service (daemon crash) via a 16-bit SMS message with an odd number of bytes, which triggers an infinite loop.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Nguồn

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!