| Max CVSS | 7.8 | Min CVSS | 7.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-5445 | 7.8 |
Unspecified vulnerability in the SIP channel driver (channels/chan_sip.c) in Asterisk 1.2.x before 1.2.13 and 1.4.x before 1.4.0-beta3 allows remote attackers to cause a denial of service (resource consumption) via unspecified vectors that result in
|
17-10-2018 - 21:42 | 23-10-2006 - 17:07 | |
| CVE-2006-5444 | 7.5 |
Integer overflow in the get_input function in the Skinny channel driver (chan_skinny.c) in Asterisk 1.0.x before 1.0.12 and 1.2.x before 1.2.13, as used by Cisco SCCP phones, allows remote attackers to execute arbitrary code via a certain dlen value
|
17-10-2018 - 21:42 | 23-10-2006 - 17:07 | |
| CVE-2006-4345 | 7.5 |
Stack-based buffer overflow in channels/chan_mgcp.c in MGCP in Asterisk 1.0 through 1.2.10 allows remote attackers to execute arbitrary code via a crafted audit endpoint (AUEP) response.
|
17-10-2018 - 21:36 | 24-08-2006 - 20:04 | |
| CVE-2006-4346 | 7.5 |
Asterisk 1.2.10 supports the use of client-controlled variables to determine filenames in the Record function, which allows remote attackers to (1) execute code via format string specifiers or (2) overwrite files via directory traversals involving un
|
17-10-2018 - 21:36 | 24-08-2006 - 20:04 |