The Skinny channel driver (chan_skinny) in Asterisk Open Source before 1.4.10, AsteriskNOW before beta7, Appliance Developer Kit before 0.7.0, and Appliance s800i before 1.0.3 allows remote authenticated users to cause a denial of service (application crash) via a CAPABILITIES_RES_MESSAGE packet with a capabilities count larger than the capabilities_res_message array population.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 00:35
Type | Values Removed | Values Added |
---|---|---|
References | () http://downloads.digium.com/pub/asa/ASA-2007-019.pdf - Patch | |
References | () http://secunia.com/advisories/26340 - Patch, Vendor Advisory | |
References | () http://www.securityfocus.com/bid/25228 - Patch | |
References | () http://www.securitytracker.com/id?1018536 - | |
References | () http://www.vupen.com/english/advisories/2007/2808 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/35870 - |
Information
Published : 2007-08-09 21:17
Updated : 2024-11-21 00:35
NVD link : CVE-2007-4280
Mitre link : CVE-2007-4280
CVE.ORG link : CVE-2007-4280
JSON object : View
Products Affected
asterisk
- asterisk
- asterisknow
- asterisk_appliance_developer_kit
- s800i
CWE