CVE-2006-1827
EPSS 3.4%發布日:2006/4/18修改日:2026/4/28
描述
Integer signedness error in format_jpeg.c in Asterisk 1.2.6 and earlier allows remote attackers to execute arbitrary code via a length value that passes a length check as a negative number, but triggers a buffer overflow when it is used as an unsigned length.
受影響套件(1)
- Debian/asteriskfrom 0, < 1:1.2.7.1.dfsg-1