Lucene search
RedhatCVELIST:CVE-2012-1184HistorySep 18, 2012 - 6:00 p.m.
CVE-2012-1184
2012-09-1818:00:00
redhat
www.cve.org
5
Stack-based buffer overflow in the ast_parse_digest function in main/utils.c in Asterisk 1.8.x before 1.8.10.1 and 10.x before 10.2.1 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string in an HTTP Digest Authentication header.
References
downloads.asterisk.org/pub/security/AST-2012-003-1.8.diff
downloads.asterisk.org/pub/security/AST-2012-003.pdf
osvdb.org/80126
secunia.com/advisories/48417
www.asterisk.org/node/51797
www.openwall.com/lists/oss-security/2012/03/16/10
www.openwall.com/lists/oss-security/2012/03/16/17
www.securitytracker.com/id?1026813
exchange.xforce.ibmcloud.com/vulnerabilities/74083
Related
nessus
nessus
Asterisk ast_parse_digest Function HTTP Digest Authentication String Parsing Remote Overflow (AST-2012-003)
2012-03-22 00:00:00
Fedora 17 : asterisk-10.2.1-1.fc17 (2012-4230)
2012-04-12 00:00:00
Fedora 16 : asterisk-1.8.10.1-1.fc16 (2012-4318)
2012-04-02 00:00:00
prion
prion
Stack overflow
2012-09-18 18:55:00
openvas
openvas
Asterisk HTTP Manager Buffer Overflow Vulnerability
2012-04-23 00:00:00
Fedora Update for asterisk FEDORA-2012-4318
2012-04-02 00:00:00
Gentoo Security Advisory GLSA 201203-21 (Asterisk)
2012-04-30 00:00:00
ubuntucve
ubuntucve
CVE-2012-1184
2012-09-18 00:00:00
nvd
nvd
CVE-2012-1184
2012-09-18 18:55:04
exploitdb
exploitdb
Asterisk - 'ast_parse_digest()' Stack Buffer Overflow (PoC)
2012-03-15 00:00:00
debiancve
debiancve
CVE-2012-1184
2012-09-18 18:55:04
cve
cve
CVE-2012-1184
2012-09-18 18:55:04
fedora
fedora
[SECURITY] Fedora 17 Update: asterisk-10.2.1-1.fc17
2012-04-12 02:04:28
[SECURITY] Fedora 16 Update: asterisk-1.8.10.1-1.fc16
2012-03-31 03:16:38
[SECURITY] Fedora 15 Update: asterisk-1.8.10.1-1.fc15
2012-03-31 03:10:13
gentoo
gentoo
Asterisk: Multiple vulnerabilities
2012-03-28 00:00:00