Lucene search

[email protected]CVE-2006-5444

HistoryOct 23, 2006 - 5:07 p.m.

CVE-2006-5444

2006-10-2317:07:00

[email protected]

web.nvd.nist.gov

cve-2006-5444

asterisk

integer overflow

skinny channel driver

remote code execution

nvd

cisco sccp phones

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

Low

0.968 High

EPSS

Percentile

99.7%

JSON

Integer overflow in the get_input function in the Skinny channel driver (chan_skinny.c) in Asterisk 1.0.x before 1.0.12 and 1.2.x before 1.2.13, as used by Cisco SCCP phones, allows remote attackers to execute arbitrary code via a certain dlen value that passes a signed integer comparison and leads to a heap-based buffer overflow.

Affected configurations

NVD

Node

digiumasteriskMatch0.1.7

digiumasteriskMatch0.1.8

digiumasteriskMatch0.1.9

digiumasteriskMatch0.1.9.1

digiumasteriskMatch0.2

digiumasteriskMatch0.3

digiumasteriskMatch0.4

digiumasteriskMatch0.7

digiumasteriskMatch0.7.1

digiumasteriskMatch0.7.2

digiumasteriskMatch0.9

digiumasteriskMatch1.0

digiumasteriskMatch1.0.7

digiumasteriskMatch1.0.8

digiumasteriskMatch1.0.9

digiumasteriskMatch1.0.10

digiumasteriskMatch1.0.11

digiumasteriskMatch1.2.6

digiumasteriskMatch1.2.7

digiumasteriskMatch1.2.8

digiumasteriskMatch1.2.9

digiumasteriskMatch1.2.10

digiumasteriskMatch1.2.11

digiumasteriskMatch1.2.12

digiumasteriskMatch1.2_beta1

digiumasteriskMatch1.2_beta2

CPENameOperatorVersion
digium:asteriskdigium asteriskeq0.1.7
digium:asteriskdigium asteriskeq0.1.8
digium:asteriskdigium asteriskeq0.1.9
digium:asteriskdigium asteriskeq0.1.9.1
digium:asteriskdigium asteriskeq0.2
digium:asteriskdigium asteriskeq0.3
digium:asteriskdigium asteriskeq0.4
digium:asteriskdigium asteriskeq0.7
digium:asteriskdigium asteriskeq0.7.1
digium:asteriskdigium asteriskeq0.7.2

CPE	Name	Operator	Version
digium:asterisk	digium asterisk	eq	0.1.7
digium:asterisk	digium asterisk	eq	0.1.8
digium:asterisk	digium asterisk	eq	0.1.9
digium:asterisk	digium asterisk	eq	0.1.9.1
digium:asterisk	digium asterisk	eq	0.2
digium:asterisk	digium asterisk	eq	0.3
digium:asterisk	digium asterisk	eq	0.4
digium:asterisk	digium asterisk	eq	0.7
digium:asterisk	digium asterisk	eq	0.7.1
digium:asterisk	digium asterisk	eq	0.7.2