← voltar
CVE-2009-4055

CVE-2009-4055

EPSS 2.8%
rtp.c in Asterisk Open Source 1.2.x before 1.2.37, 1.4.x before 1.4.27.1, 1.6.0.x before 1.6.0.19, and 1.6.1.x before 1.6.1.11; Business Edition B.x.x before B.2.5.13, C.2.x.x before C.2.4.6, and C.3.x.x before C.3.2.3; and s800i 1.3.x before 1.3.0.6 allows remote attackers to cause a denial of service (daemon crash) via an RTP comfort noise payload with a long data length.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://downloads.asterisk.org/pub/security/AST-2009-010-1.2.diff.txthttp://downloads.asterisk.org/pub/security/AST-2009-010-1.4.diff.txthttp://downloads.asterisk.org/pub/security/AST-2009-010-1.6.0.diff.txthttp://downloads.asterisk.org/pub/security/AST-2009-010-1.6.1.diff.txthttp://downloads.digium.com/pub/security/AST-2009-010.htmlhttp://secunia.com/advisories/37530http://secunia.com/advisories/37677http://secunia.com/advisories/37708http://securitytracker.com/id?1023249https://exchange.xforce.ibmcloud.com/vulnerabilities/54471https://issues.asterisk.org/view.php?id=16242http://www.debian.org/security/2009/dsa-1952