Advisories
Research
Forums
Create Profile
Our Commitment
Database
Search
Advisories by Product
Advisories by Vendor
Terminology
Report Vulnerability
Insecure Library Loading

Vulnerability Report: Asterisk 1.x

This vulnerability report for Asterisk 1.x contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.

If you have information about a new or an existing vulnerability in Asterisk 1.x then you are more than welcome to contact us.


Table of Contents

1. Product Summary Only

2. Secunia Advisory Statistics (All time)
2.1. Statistics for 2014
2.2. Statistics for 2013
2.3. Statistics for 2012
2.4. Statistics for 2011
2.5. Statistics for 2010
2.6. Statistics for 2009
2.7. Statistics for 2008
2.8. Statistics for 2007
2.9. Statistics for 2006
2.10. Statistics for 2005
2.11. Statistics for 2004
2.12. Statistics for 2003

3. List of Secunia Advisories (All time)
3.1. List for 2014
3.2. List for 2013
3.3. List for 2012
3.4. List for 2011
3.5. List for 2010
3.6. List for 2009
3.7. List for 2008
3.8. List for 2007
3.9. List for 2006
3.10. List for 2005
3.11. List for 2004
3.12. List for 2003

4. Send Feedback
 
Vendor, Links, and Unpatched Vulnerabilities

Vendor Digium

Product Link View Here (Link to external site)

Affected By 65 Secunia advisories
109 Vulnerabilities

Monitor Product Receive alerts for this product

Unpatched 2% (1 of 65 Secunia advisories)

Most Critical Unpatched
The most severe unpatched Secunia advisory affecting Asterisk 1.x, with all vendor patches applied, is rated Not critical .




65 Secunia Advisories in 2003-2014

Secunia has issued a total of 65 Secunia advisories in 2003-2014 for Asterisk 1.x. Currently, 2% (1 out of 65) are marked as unpatched with the most severe being rated Not critical

More information about the specific Secunia advisories affecting Asterisk 1.x can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.



Asterisk Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 2 in 2014. 239 views.
Release Date:
2014-06-18
Secunia Advisory ID:
SA58782
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
Spoofing
DoS
System access
Where:
From local network
Short Description:
Multiple vulnerabilities have been reported in Asterisk, which can be exploited by malicious users to cause a DoS (Denial of Service) and compromise a vulnerable system and by malicious people to cause a DoS. [Read More]


Asterisk Multiple Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 2 of 2 in 2014. 294 views.
Release Date:
2014-03-13
Secunia Advisory ID:
SA57354
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
Multiple vulnerabilities have been reported in Asterisk, which can be exploited by malicious users and malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk Security Bypass and Memory Corruption Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 4 in 2013. 754 views.
Release Date:
2013-12-17
Secunia Advisory ID:
SA55907
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
DoS
Where:
From remote
Short Description:
Multiple vulnerabilities have been reported in Asterisk, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk Products SIP Channel Driver Two Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 2 of 4 in 2013. 1,751 views.
Release Date:
2013-08-28
Secunia Advisory ID:
SA54534
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
Two vulnerabilities have been reported in some Asterisk products, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk Products Denial of Service Vulnerability and User Enumeration Weakness
Vendor Patch. Secunia Advisory 3 of 4 in 2013. 915 views.
Release Date:
2013-03-28
Secunia Advisory ID:
SA52815
Solution Status:
Vendor Patch
Criticality:
Impact:
Exposure of sensitive information
DoS
Where:
From remote
Short Description:
A weakness and a vulnerability has been reported in some Asterisk products, which can be exploited by malicious people to determine valid usernames and cause a DoS (Denial of Service). [Read More]


Asterisk Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 4 of 4 in 2013. 1,997 views.
Release Date:
2013-01-03
Secunia Advisory ID:
SA51689
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
System access
Where:
From remote
Short Description:
Multiple vulnerabilities have been reported in Asterisk, which can be exploited by malicious users to cause a DoS (Denial of Service) and by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system. [Read More]


Asterisk Two Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 6 in 2012. 1,767 views.
Release Date:
2012-08-31
Secunia Advisory ID:
SA50456
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
System access
Where:
From remote
Short Description:
Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious users to bypass certain security restrictions and compromise a vulnerable system. [Read More]


Asterisk Two Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 2 of 6 in 2012. 1,363 views.
Release Date:
2012-07-06
Secunia Advisory ID:
SA49814
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]


Asterisk Two Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 3 of 6 in 2012. 1,620 views.
Release Date:
2012-05-30
Secunia Advisory ID:
SA49303
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 4 of 6 in 2012. 1,817 views.
Release Date:
2012-04-24
Secunia Advisory ID:
SA48891
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
DoS
System access
Where:
From remote
Short Description:
Multiple vulnerabilities have been reported in Asterisk and Asterisk Business Edition, which can be exploited by malicious users to cause a DoS (Denial of Service), bypass certain security restrictions, and compromise a vulnerable system. [Read More]


Asterisk Denial of Service and Buffer Overflow Vulnerabilities
Vendor Patch. Secunia Advisory 5 of 6 in 2012. 3,793 views.
Release Date:
2012-03-16
Secunia Advisory ID:
SA48417
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
System access
Where:
From remote
Short Description:
Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]


Asterisk SRTP Video Stream Negotiation Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 6 of 6 in 2012. 1,341 views.
Release Date:
2012-01-20
Secunia Advisory ID:
SA47630
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk Enumeration Weakness and Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 1 of 10 in 2011. 1,438 views.
Release Date:
2011-12-09
Secunia Advisory ID:
SA47059
Solution Status:
Vendor Patch
Criticality:
Impact:
Exposure of system information
DoS
Where:
From remote
Short Description:
A weakness and vulnerability have been reported in Asterisk, which can be exploited by malicious people to disclose certain system information and cause a DoS (Denial of Service). [Read More]


Asterisk SIP Channel Driver Uninitialised Variables Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 2 of 10 in 2011. 1,643 views.
Release Date:
2011-10-18
Secunia Advisory ID:
SA46420
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]


Asterisk Multiple Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 3 of 10 in 2011. 3,057 views.
Release Date:
2011-06-24
Secunia Advisory ID:
SA45048
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
Multiple vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk SIP Channel Driver "parse_uri_full()" Denial of Service
Vendor Patch. Secunia Advisory 4 of 10 in 2011. 1,994 views.
Release Date:
2011-06-03
Secunia Advisory ID:
SA44828
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]


Asterisk SIP REGISTER Response User Enumeration Weakness
Vendor Patch. Secunia Advisory 5 of 10 in 2011. 2,880 views.
Release Date:
2011-05-27
Secunia Advisory ID:
SA44707
Solution Status:
Vendor Patch
Criticality:
Impact:
Exposure of system information
Where:
From remote
Short Description:
A weakness has been discovered in Asterisk, which can be exploited by malicious people to determine valid usernames. [Read More]


Asterisk SIP INVITE Response User Enumeration Weakness
Unpatched. Secunia Advisory 6 of 10 in 2011. 2,027 views.
Release Date:
2011-05-04
Secunia Advisory ID:
SA44452
Solution Status:
Unpatched
Criticality:
Impact:
Exposure of system information
Where:
From remote
Short Description:
A weakness has been discovered in Asterisk, which can be exploited by malicious people to determine valid usernames. [Read More]


Asterisk Security Bypass and Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 7 of 10 in 2011. 2,915 views.
Release Date:
2011-04-22
Secunia Advisory ID:
SA44197
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
DoS
Where:
From remote
Short Description:
Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk Two Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 8 of 10 in 2011. 1,972 views.
Release Date:
2011-03-17
Secunia Advisory ID:
SA43722
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk UPDTL Buffer Overflow Vulnerabilities
Vendor Patch. Secunia Advisory 9 of 10 in 2011. 3,786 views.
Release Date:
2011-02-22
Secunia Advisory ID:
SA43429
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
System access
Where:
From remote
Short Description:
Some vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to compromise a vulnerable system. [Read More]


Asterisk "ast_uri_encode()" Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 10 of 10 in 2011. 2,516 views.
Release Date:
2011-01-19
Secunia Advisory ID:
SA42935
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
System access
Where:
From local network
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious users to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]


Asterisk CIDR Host Access Rules Security Bypass
Vendor Patch. Secunia Advisory 1 of 3 in 2010. 3,741 views.
Release Date:
2010-02-26
Secunia Advisory ID:
SA38752
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
Where:
From remote
Short Description:
A security issue has been reported in Asterisk, which can be exploited by malicious people to potentially bypass certain security restrictions. [Read More]


Asterisk Dialplan Wildcard Pattern Weakness
Vendor Workaround. Secunia Advisory 2 of 3 in 2010. 3,450 views.
Release Date:
2010-02-19
Secunia Advisory ID:
SA38641
Solution Status:
Vendor Workaround
Criticality:
Impact:
Security Bypass
Where:
From remote
Short Description:
A weakness has been reported in Asterisk, which can lead to unintended configurations. [Read More]


Asterisk T.38 Negotiation Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 3 of 3 in 2010. 3,133 views.
Release Date:
2010-02-03
Secunia Advisory ID:
SA38395
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk RTP Comfort Noise Payload Denial of Service
Vendor Patch. Secunia Advisory 1 of 9 in 2009. 3,664 views.
Release Date:
2009-12-01
Secunia Advisory ID:
SA37530
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk SIP REGISTER Response User Enumeration Weakness
Vendor Patch. Secunia Advisory 2 of 9 in 2009. 3,347 views.
Release Date:
2009-11-05
Secunia Advisory ID:
SA37265
Solution Status:
Vendor Patch
Criticality:
Impact:
Exposure of system information
Where:
From remote
Short Description:
A weakness has been reported in Asterisk, which can be exploited by malicious people to determine valid usernames. [Read More]


Asterisk SIP INVITE ACL Security Bypass
Vendor Patch. Secunia Advisory 3 of 9 in 2009. 2,885 views.
Release Date:
2009-10-27
Secunia Advisory ID:
SA37056
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to bypass certain security restrictions. [Read More]


Asterisk IAX2 Call Number Exhaustion Denial of Service
Vendor Patch. Secunia Advisory 4 of 9 in 2009. 3,871 views.
Release Date:
2009-09-04
Secunia Advisory ID:
SA36593
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From local network
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk SIP Channel Driver Denial of Service
Vendor Patch. Secunia Advisory 5 of 9 in 2009. 3,293 views.
Release Date:
2009-08-11
Secunia Advisory ID:
SA36227
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
Some vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk RTP Text Frames Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 6 of 9 in 2009. 5,578 views.
Release Date:
2009-07-28
Secunia Advisory ID:
SA36039
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk SIP Response User Enumeration Weakness
Vendor Patch. Secunia Advisory 7 of 9 in 2009. 3,494 views.
Release Date:
2009-04-03
Secunia Advisory ID:
SA34564
Solution Status:
Vendor Patch
Criticality:
Impact:
Exposure of system information
Where:
From remote
Short Description:
A weakness has been reported in Asterisk, which can be exploited by malicious people to determine valid user names. [Read More]


Asterisk "pedantic" SIP Processing Denial of Service
Vendor Patch. Secunia Advisory 8 of 9 in 2009. 3,177 views.
Release Date:
2009-03-11
Secunia Advisory ID:
SA34229
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
Some vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk User Account Enumeration Weakness
Vendor Patch. Secunia Advisory 9 of 9 in 2009. 6,519 views.
Release Date:
2009-01-09
Secunia Advisory ID:
SA33453
Solution Status:
Vendor Patch
Criticality:
Impact:
Exposure of system information
Where:
From local network
Short Description:
A weakness has been reported in Asterisk, which can be exploited by malicious people to identify valid user accounts. [Read More]


Asterisk IAX2 User Authentication Denial of Service
Vendor Patch. Secunia Advisory 1 of 7 in 2008. 5,341 views.
Release Date:
2008-12-11
Secunia Advisory ID:
SA32956
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From local network
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk Two Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 2 of 7 in 2008. 7,321 views.
Release Date:
2008-07-23
Secunia Advisory ID:
SA31178
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From local network
Short Description:
Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service) or to conduct DoS attacks. [Read More]


Asterisk "pedantic" SIP Processing Denial of Service
Vendor Patch. Secunia Advisory 3 of 7 in 2008. 6,968 views.
Release Date:
2008-06-04
Secunia Advisory ID:
SA30517
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk IAX2 Handshake Denial of Service
Vendor Patch. Secunia Advisory 4 of 7 in 2008. 10,468 views.
Release Date:
2008-04-23
Secunia Advisory ID:
SA29927
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From local network
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk Predictable HTTP Manager ID Weakness
Vendor Workaround. Secunia Advisory 5 of 7 in 2008. 8,963 views.
Release Date:
2008-03-19
Secunia Advisory ID:
SA29449
Solution Status:
Vendor Workaround
Criticality:
Impact:
Hijacking
Where:
From local network
Short Description:
Dino A. Dai Zovi has reported a weakness in Asterisk, which can be exploited by malicious people to hijack a user session. [Read More]


Asterisk Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 6 of 7 in 2008. 9,379 views.
Release Date:
2008-03-19
Secunia Advisory ID:
SA29426
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
DoS
System access
Where:
From remote
Short Description:
Some vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system. [Read More]


Asterisk "BYE/Also" Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 7 of 7 in 2008. 11,263 views.
Release Date:
2008-01-03
Secunia Advisory ID:
SA28312
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk Registration Database Security Bypass
Vendor Patch. Secunia Advisory 1 of 15 in 2007. 11,188 views.
Release Date:
2007-12-19
Secunia Advisory ID:
SA28149
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
Where:
From remote
Short Description:
A security issue has been reported in Asterisk, which can be exploited by malicious people to bypass certain security restrictions. [Read More]


Asterisk Postgres Realtime Engine SQL Injection
Vendor Patch. Secunia Advisory 2 of 15 in 2007. 11,752 views.
Release Date:
2007-11-30
Secunia Advisory ID:
SA27873
Solution Status:
Vendor Patch
Criticality:
Impact:
Manipulation of data
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to conduct SQL injection attacks. [Read More]


Asterisk Call Detail Record Postgres SQL Injection
Vendor Patch. Secunia Advisory 3 of 15 in 2007. 14,553 views.
Release Date:
2007-11-30
Secunia Advisory ID:
SA27827
Solution Status:
Vendor Patch
Criticality:
Impact:
Manipulation of data
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk and Asterisk Business Edition, which can be exploited by malicious users to conduct SQL injection attacks. [Read More]


Asterisk IMAP Storage Voicemail Buffer Overflow
Vendor Patch. Secunia Advisory 4 of 15 in 2007. 10,277 views.
Release Date:
2007-10-11
Secunia Advisory ID:
SA27184
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
System access
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially to compromise a vulnerable system. [Read More]


Asterisk Voicemail IMAP Backend Invalid MIME Denial of Service
Vendor Workaround. Secunia Advisory 5 of 15 in 2007. 11,288 views.
Release Date:
2007-08-27
Secunia Advisory ID:
SA26601
Solution Status:
Vendor Workaround
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk SIP Channel Driver Dialog History Memory Exhaustion
Vendor Patch. Secunia Advisory 6 of 15 in 2007. 11,988 views.
Release Date:
2007-08-22
Secunia Advisory ID:
SA26553
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk Skinny Channel Driver Denial of Service
Vendor Patch. Secunia Advisory 7 of 15 in 2007. 11,049 views.
Release Date:
2007-08-08
Secunia Advisory ID:
SA26340
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]


Asterisk IAX2 Channel Driver Denial of Service
Vendor Patch. Secunia Advisory 8 of 15 in 2007. 12,586 views.
Release Date:
2007-07-30
Secunia Advisory ID:
SA26274
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From local network
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 9 of 15 in 2007. 12,848 views.
Release Date:
2007-07-18
Secunia Advisory ID:
SA26099
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
System access
Where:
From remote
Short Description:
Some vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]


Asterisk IAX2 Channel Driver Information Disclosure
Vendor Workaround. Secunia Advisory 10 of 15 in 2007. 9,927 views.
Release Date:
2007-05-07
Secunia Advisory ID:
SA25134
Solution Status:
Vendor Workaround
Criticality:
Impact:
Exposure of sensitive information
Where:
From local network
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious users to disclose potential sensitive information. [Read More]


Asterisk T.38 SDP Buffer Overflows and Management Interface Denial of Service
Vendor Patch. Secunia Advisory 11 of 15 in 2007. 15,379 views.
Release Date:
2007-04-25
Secunia Advisory ID:
SA24977
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
System access
Where:
From remote
Short Description:
Some vulnerabilities have been reported in Asterisk, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]


Asterisk AEL Extensions Security Bypass
Vendor Workaround. Secunia Advisory 12 of 15 in 2007. 8,423 views.
Release Date:
2007-04-03
Secunia Advisory ID:
SA24694
Solution Status:
Vendor Workaround
Criticality:
Impact:
Security Bypass
Where:
From remote
Short Description:
A security issue has been reported in Asterisk, which can be exploited by malicious people to bypass certain security restrictions. [Read More]


Asterisk SIP Response Code Denial of Service
Vendor Patch. Secunia Advisory 13 of 15 in 2007. 19,897 views.
Release Date:
2007-03-22
Secunia Advisory ID:
SA24579
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
qwerty1979 has reported some vulnerabilities in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk SIP INVITE Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 14 of 15 in 2007. 12,795 views.
Release Date:
2007-03-21
Secunia Advisory ID:
SA24564
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk SIP Message Handling Denial of Service
Vendor Patch. Secunia Advisory 15 of 15 in 2007. 14,977 views.
Release Date:
2007-03-07
Secunia Advisory ID:
SA24380
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
MU Security Research Team has reported a vulnerability in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk SCCP Integer Overflow and SIP Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 5 in 2006. 14,330 views.
Release Date:
2006-10-20
Secunia Advisory ID:
SA22480
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
System access
Where:
From remote
Short Description:
Some vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]


Asterisk MGCP AUEP Response Handling Buffer Overflow
Vendor Patch. Secunia Advisory 2 of 5 in 2006. 13,536 views.
Release Date:
2006-08-24
Secunia Advisory ID:
SA21600
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
System access
Where:
From local network
Short Description:
Mu Security has reported a vulnerability in Asterisk, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]


Asterisk IAX2 Call Request Flooding Denial of Service
Vendor Patch. Secunia Advisory 3 of 5 in 2006. 11,790 views.
Release Date:
2006-07-17
Secunia Advisory ID:
SA21071
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From local network
Short Description:
ISS X-Force has reported a vulnerability in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Asterisk IAX2 Channel Driver Code Execution Vulnerability
Vendor Patch. Secunia Advisory 4 of 5 in 2006. 11,396 views.
Release Date:
2006-06-07
Secunia Advisory ID:
SA20497
Solution Status:
Vendor Patch
Criticality:
Impact:
System access
Where:
From local network
Short Description:
Core Security Technologies has reported a vulnerability in Asterisk, which can be exploited by malicious people to compromise a vulnerable system. [Read More]


Asterisk JPEG Image Handling Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 5 of 5 in 2006. 11,654 views.
Release Date:
2006-04-24
Secunia Advisory ID:
SA19800
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
System access
Where:
From local network
Short Description:
Emmanouel Kellinis has reported a vulnerability in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a vulnerable system. [Read More]


Asterisk "folder" Disclosure of Sound Files
Vendor Patch. Secunia Advisory 1 of 2 in 2005. 10,193 views.
Release Date:
2005-11-08
Secunia Advisory ID:
SA17459
Solution Status:
Vendor Patch
Criticality:
Impact:
Exposure of sensitive information
Where:
From remote
Short Description:
Assurance.com.au has reported a vulnerability in Asterisk, which can be exploited by malicious users to disclose sensitive information. [Read More]


Asterisk Manager Interface Command Processing Vulnerability
Vendor Patch. Secunia Advisory 2 of 2 in 2005. 9,013 views.
Release Date:
2005-06-23
Secunia Advisory ID:
SA15791
Solution Status:
Vendor Patch
Criticality:
Impact:
System access
Where:
From local network
Short Description:
Wade Alcorn has reported a vulnerability in Asterisk, which can be exploited by malicious users to compromise a vulnerable system. [Read More]


Asterisk CallerID SQL Injection Vulnerability
Vendor Patch. Secunia Advisory 1 of 2 in 2003. 8,944 views.
Release Date:
2003-09-13
Secunia Advisory ID:
SA9718
Solution Status:
Vendor Patch
Criticality:
Impact:
Manipulation of data
Exposure of sensitive information
Where:
From remote
Short Description:
A vulnerability has been identified in Asterisk, which can be exploited by malicious people to perform arbitrary database operations on a vulnerable system. [Read More]


Asterisk SIP Request Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 2 of 2 in 2003. 9,049 views.
Release Date:
2003-09-05
Secunia Advisory ID:
SA9674
Solution Status:
Vendor Patch
Criticality:
Impact:
System access
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to compromise a vulnerable system. [Read More]





Discuss this Product
A new thread in our forum is automatically created for each Product. Activate the thread by commenting/discussing below.
Subject: Asterisk 1.x 
No posts yet

-

You must be logged in to post a comment.



 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability