Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2012-2416
HistoryApr 30, 2012 - 8:55 p.m.

CVE-2012-2416

2012-04-3020:55:02
Debian Security Bug Tracker
security-tracker.debian.org
12

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

EPSS

0.058

Percentile

93.4%

JSON

chan_sip.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.11.1 and 10.x before 10.3.1 and Asterisk Business Edition C.3.x before C.3.7.4, when the trustrpid option is enabled, allows remote authenticated users to cause a denial of service (daemon crash) by sending a SIP UPDATE message that triggers a connected-line update attempt without an associated channel.

OSVersionArchitecturePackageVersionFilename
Debian11allasterisk< 1:1.8.11.1~dfsg-1asterisk_1:1.8.11.1~dfsg-1_all.deb
Debian999allasterisk< 1:1.8.11.1~dfsg-1asterisk_1:1.8.11.1~dfsg-1_all.deb

Related

ubuntucve 1
prion 1
nessus 6
cvelist 1
nvd 1
openvas 11
cve 1
fedora 3
freebsd 1
gentoo 1
ubuntucve
ubuntucve
CVE-2012-2416
2012-04-30 00:00:00
prion
prion
Code injection
2012-04-30 20:55:00
nessus
nessus
Asterisk Remote Crash Vulnerability in SIP Channel Driver (AST-2012-006)
2012-04-27 00:00:00
Fedora 15 : asterisk-1.8.11.1-1.fc15 (2012-6724)
2012-05-07 00:00:00
FreeBSD : asterisk -- multiple vulnerabilities (1c5abbe2-8d7f-11e1-a374-14dae9ebcf89)
2012-04-24 00:00:00
cvelist
cvelist
CVE-2012-2416
2012-04-30 20:00:00
nvd
nvd
CVE-2012-2416
2012-04-30 20:55:02
openvas
openvas
Asterisk SIP Channel Driver DoS Vulnerability
2012-06-19 00:00:00
FreeBSD Ports: asterisk16
2012-04-30 00:00:00
Fedora Update for asterisk FEDORA-2012-6724
2012-05-08 00:00:00
cve
cve
CVE-2012-2416
2012-04-30 20:55:02
fedora
fedora
[SECURITY] Fedora 15 Update: asterisk-1.8.11.1-1.fc15
2012-05-04 20:29:45
[SECURITY] Fedora 17 Update: asterisk-10.3.1-1.fc17
2012-05-04 22:52:14
[SECURITY] Fedora 16 Update: asterisk-1.8.11.1-1.fc16
2012-05-03 22:53:54
freebsd
freebsd
asterisk -- multiple vulnerabilities
2012-04-23 00:00:00
gentoo
gentoo
Asterisk: Multiple vulnerabilities
2012-06-21 00:00:00

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

EPSS

0.058

Percentile

93.4%

JSON
Related for DEBIANCVE:CVE-2012-2416
ubuntucve1prion1nessus6cvelist1nvd1openvas11cve1fedora3freebsd1gentoo1