Stack-based buffer overflow in the IAX2 channel driver (chan_iax2) in Asterisk before 1.2.22 and 1.4.x before 1.4.8, Business Edition before B.2.2.1, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote attackers to execute arbitrary code by sending a long (1) voice or (2) video RTP frame.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
21 Nov 2024, 00:34
Type | Values Removed | Values Added |
---|---|---|
References | () http://bugs.gentoo.org/show_bug.cgi?id=185713 - | |
References | () http://ftp.digium.com/pub/asa/ASA-2007-014.pdf - Patch | |
References | () http://secunia.com/advisories/26099 - | |
References | () http://secunia.com/advisories/29051 - | |
References | () http://security.gentoo.org/glsa/glsa-200802-11.xml - | |
References | () http://www.debian.org/security/2007/dsa-1358 - | |
References | () http://www.novell.com/linux/security/advisories/2007_15_sr.html - | |
References | () http://www.securityfocus.com/bid/24949 - | |
References | () http://www.securitytracker.com/id?1018407 - | |
References | () http://www.vupen.com/english/advisories/2007/2563 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/35466 - |
Information
Published : 2007-07-18 17:30
Updated : 2024-11-21 00:34
NVD link : CVE-2007-3762
Mitre link : CVE-2007-3762
CVE.ORG link : CVE-2007-3762
JSON object : View
Products Affected
asterisk
- asterisk
- asterisknow
- s800i_appliance
- asterisk_appliance_developer_kit
CWE