Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-4048HistoryJun 17, 2014 - 2:55 p.m.
CVE-2014-4048
2014-06-1714:55:08
Debian Security Bug Tracker
security-tracker.debian.org
12
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.008 Low
EPSS
Percentile
81.2%
The PJSIP Channel Driver in Asterisk Open Source before 12.3.1 allows remote attackers to cause a denial of service (deadlock) by terminating a subscription request before it is complete, which triggers a SIP transaction timeout.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | asterisk | < 1:16.28.0~dfsg-0+deb11u4 | asterisk_1:16.28.0~dfsg-0+deb11u4_all.deb |
| Debian | 999 | all | asterisk | < 1:20.8.1~dfsg+~cs6.14.40431414-1 | asterisk_1:20.8.1~dfsg+~cs6.14.40431414-1_all.deb |
Related
nvd
nvd
CVE-2014-4048
2014-06-17 14:55:08
prion
prion
Cross site request forgery (csrf)
2014-06-17 14:55:00
ubuntucve
ubuntucve
CVE-2014-4048
2014-06-17 00:00:00
cvelist
cvelist
CVE-2014-4048
2014-06-17 14:00:00
securityvulns
securityvulns
AST-2014-008: Denial of Service in PJSIP Channel Driver Subscriptions
2014-06-13 00:00:00
Asterisk multiple security vulnerabilities
2014-06-13 00:00:00
cve
cve
CVE-2014-4048
2014-06-17 14:55:08
nessus
nessus
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.008 Low
EPSS
Percentile
81.2%
Related for DEBIANCVE:CVE-2014-4048