CVE-2012-5976

EPSS 29.7%

asterisk - several issues

發布日:2013/1/4修改日:2026/4/28

描述

Multiple stack consumption vulnerabilities in Asterisk Open Source 1.8.x before 1.8.19.1, 10.x before 10.11.1, and 11.x before 11.1.2; Certified Asterisk 1.8.11 before 1.8.11-cert10; and Asterisk Digiumphones 10.x-digiumphones before 10.11.1-digiumphones allow remote attackers to cause a denial of service (daemon crash) via TCP data using the (1) SIP, (2) HTTP, or (3) XMPP protocol.

受影響套件(2)

Debian/asteriskfrom 0, < 1:1.8.13.1~dfsg-2
Debian/asteriskfrom 0, < 1:1.6.2.9-2+squeeze9

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-5976