navigation bar left navigation bar right

navigation left tab Advisories navigation right tab
navigation left tab Research navigation right tab
navigation left tab Forums navigation right tab
navigation left tab Create Profile navigation right tab
navigation left tab Our Commitment navigation right tab
Database
Search
Advisories by Product
Advisories by Vendor
Terminology
Report Vulnerability
Insecure Library Loading

Vulnerability Report: Asterisk 1.x

This vulnerability report for Asterisk 1.x contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.

If you have information about a new or an existing vulnerability in Asterisk 1.x then you are more than welcome to contact us.


Table of Contents

1. Product Summary Only

2. Secunia Advisory Statistics (All time)
2.1. Statistics for 2014
2.2. Statistics for 2013
2.3. Statistics for 2012
2.4. Statistics for 2011
2.5. Statistics for 2010
2.6. Statistics for 2009
2.7. Statistics for 2008
2.8. Statistics for 2007
2.9. Statistics for 2006
2.10. Statistics for 2005
2.11. Statistics for 2004
2.12. Statistics for 2003

3. List of Secunia Advisories (All time)
3.1. List for 2014
3.2. List for 2013
3.3. List for 2012
3.4. List for 2011
3.5. List for 2010
3.6. List for 2009
3.7. List for 2008
3.8. List for 2007
3.9. List for 2006
3.10. List for 2005
3.11. List for 2004
3.12. List for 2003

4. Send Feedback
 
Vendor, Links, and Unpatched Vulnerabilities

Vendor Digium

Product Link View Here (Link to external site)

Affected By 66 Secunia advisories
117 Vulnerabilities

Monitor Product Receive alerts for this product

Unpatched 2% (1 of 66 Secunia advisories)

Most Critical Unpatched
The most severe unpatched Secunia advisory affecting Asterisk 1.x, with all vendor patches applied, is rated Not critical .




66 Secunia Advisories in 2003-2014

Secunia has issued a total of 66 Secunia advisories in 2003-2014 for Asterisk 1.x. Currently, 2% (1 out of 66) are marked as unpatched with the most severe being rated Not critical

More information about the specific Secunia advisories affecting Asterisk 1.x can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.



patched Asterisk Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 3 in 2014. 225 views.
Release Date:
2014-11-24
Secunia Advisory ID:
SA57708
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
Security Bypass
DoS
System access
Where:
From local network
Short Description:
Some security issues and multiple vulnerabilities have been reported in Asterisk, which can be exploited by malicious users to bypass certain security restrictions and compromise a vulnerable system and by malicious people to bypass certain security restrictions and cause a DoS (Denial of Service). [Read More]


patched Asterisk Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 2 of 3 in 2014. 354 views.
Release Date:
2014-06-18
Secunia Advisory ID:
SA58782
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
Security Bypass
Spoofing
DoS
System access
Where:
From local network
Short Description:
Multiple vulnerabilities have been reported in Asterisk, which can be exploited by malicious users to cause a DoS (Denial of Service) and compromise a vulnerable system and by malicious people to cause a DoS. [Read More]


patched Asterisk Multiple Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 3 of 3 in 2014. 475 views.
Release Date:
2014-03-13
Secunia Advisory ID:
SA57354
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
Multiple vulnerabilities have been reported in Asterisk, which can be exploited by malicious users and malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk Security Bypass and Memory Corruption Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 4 in 2013. 959 views.
Release Date:
2013-12-17
Secunia Advisory ID:
SA55907
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
Security Bypass
DoS
Where:
From remote
Short Description:
Multiple vulnerabilities have been reported in Asterisk, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk Products SIP Channel Driver Two Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 2 of 4 in 2013. 2,025 views.
Release Date:
2013-08-28
Secunia Advisory ID:
SA54534
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
Two vulnerabilities have been reported in some Asterisk products, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk Products Denial of Service Vulnerability and User Enumeration Weakness
Vendor Patch. Secunia Advisory 3 of 4 in 2013. 1,066 views.
Release Date:
2013-03-28
Secunia Advisory ID:
SA52815
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
Exposure of sensitive information
DoS
Where:
From remote
Short Description:
A weakness and a vulnerability has been reported in some Asterisk products, which can be exploited by malicious people to determine valid usernames and cause a DoS (Denial of Service). [Read More]


patched Asterisk Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 4 of 4 in 2013. 2,144 views.
Release Date:
2013-01-03
Secunia Advisory ID:
SA51689
Solution Status:
Vendor Patch
Criticality:
Highly critical
Impact:
DoS
System access
Where:
From remote
Short Description:
Multiple vulnerabilities have been reported in Asterisk, which can be exploited by malicious users to cause a DoS (Denial of Service) and by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system. [Read More]


patched Asterisk Two Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 6 in 2012. 1,944 views.
Release Date:
2012-08-31
Secunia Advisory ID:
SA50456
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
Security Bypass
System access
Where:
From remote
Short Description:
Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious users to bypass certain security restrictions and compromise a vulnerable system. [Read More]


patched Asterisk Two Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 2 of 6 in 2012. 1,472 views.
Release Date:
2012-07-06
Secunia Advisory ID:
SA49814
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
DoS
Where:
From remote
Short Description:
Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]


patched Asterisk Two Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 3 of 6 in 2012. 1,787 views.
Release Date:
2012-05-30
Secunia Advisory ID:
SA49303
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 4 of 6 in 2012. 2,020 views.
Release Date:
2012-04-24
Secunia Advisory ID:
SA48891
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
Security Bypass
DoS
System access
Where:
From remote
Short Description:
Multiple vulnerabilities have been reported in Asterisk and Asterisk Business Edition, which can be exploited by malicious users to cause a DoS (Denial of Service), bypass certain security restrictions, and compromise a vulnerable system. [Read More]


patched Asterisk Denial of Service and Buffer Overflow Vulnerabilities
Vendor Patch. Secunia Advisory 5 of 6 in 2012. 4,314 views.
Release Date:
2012-03-16
Secunia Advisory ID:
SA48417
Solution Status:
Vendor Patch
Criticality:
Highly critical
Impact:
DoS
System access
Where:
From remote
Short Description:
Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]


patched Asterisk SRTP Video Stream Negotiation Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 6 of 6 in 2012. 1,439 views.
Release Date:
2012-01-20
Secunia Advisory ID:
SA47630
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk Enumeration Weakness and Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 1 of 10 in 2011. 1,542 views.
Release Date:
2011-12-09
Secunia Advisory ID:
SA47059
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
Exposure of system information
DoS
Where:
From remote
Short Description:
A weakness and vulnerability have been reported in Asterisk, which can be exploited by malicious people to disclose certain system information and cause a DoS (Denial of Service). [Read More]


patched Asterisk SIP Channel Driver Uninitialised Variables Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 2 of 10 in 2011. 1,797 views.
Release Date:
2011-10-18
Secunia Advisory ID:
SA46420
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]


patched Asterisk Multiple Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 3 of 10 in 2011. 3,238 views.
Release Date:
2011-06-24
Secunia Advisory ID:
SA45048
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
Multiple vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk SIP Channel Driver "parse_uri_full()" Denial of Service
Vendor Patch. Secunia Advisory 4 of 10 in 2011. 2,192 views.
Release Date:
2011-06-03
Secunia Advisory ID:
SA44828
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]


patched Asterisk SIP REGISTER Response User Enumeration Weakness
Vendor Patch. Secunia Advisory 5 of 10 in 2011. 3,001 views.
Release Date:
2011-05-27
Secunia Advisory ID:
SA44707
Solution Status:
Vendor Patch
Criticality:
Not critical
Impact:
Exposure of system information
Where:
From remote
Short Description:
A weakness has been discovered in Asterisk, which can be exploited by malicious people to determine valid usernames. [Read More]


unpatched Asterisk SIP INVITE Response User Enumeration Weakness
Unpatched. Secunia Advisory 6 of 10 in 2011. 2,145 views.
Release Date:
2011-05-04
Secunia Advisory ID:
SA44452
Solution Status:
Unpatched
Criticality:
Not critical
Impact:
Exposure of system information
Where:
From remote
Short Description:
A weakness has been discovered in Asterisk, which can be exploited by malicious people to determine valid usernames. [Read More]


patched Asterisk Security Bypass and Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 7 of 10 in 2011. 3,076 views.
Release Date:
2011-04-22
Secunia Advisory ID:
SA44197
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
Security Bypass
DoS
Where:
From remote
Short Description:
Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk Two Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 8 of 10 in 2011. 2,118 views.
Release Date:
2011-03-17
Secunia Advisory ID:
SA43722
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk UPDTL Buffer Overflow Vulnerabilities
Vendor Patch. Secunia Advisory 9 of 10 in 2011. 4,058 views.
Release Date:
2011-02-22
Secunia Advisory ID:
SA43429
Solution Status:
Vendor Patch
Criticality:
Highly critical
Impact:
DoS
System access
Where:
From remote
Short Description:
Some vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to compromise a vulnerable system. [Read More]


patched Asterisk "ast_uri_encode()" Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 10 of 10 in 2011. 2,694 views.
Release Date:
2011-01-19
Secunia Advisory ID:
SA42935
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
System access
Where:
From local network
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious users to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]


patched Asterisk CIDR Host Access Rules Security Bypass
Vendor Patch. Secunia Advisory 1 of 3 in 2010. 3,984 views.
Release Date:
2010-02-26
Secunia Advisory ID:
SA38752
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
Security Bypass
Where:
From remote
Short Description:
A security issue has been reported in Asterisk, which can be exploited by malicious people to potentially bypass certain security restrictions. [Read More]


patched Asterisk Dialplan Wildcard Pattern Weakness
Vendor Workaround. Secunia Advisory 2 of 3 in 2010. 3,585 views.
Release Date:
2010-02-19
Secunia Advisory ID:
SA38641
Solution Status:
Vendor Workaround
Criticality:
Not critical
Impact:
Security Bypass
Where:
From remote
Short Description:
A weakness has been reported in Asterisk, which can lead to unintended configurations. [Read More]


patched Asterisk T.38 Negotiation Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 3 of 3 in 2010. 3,328 views.
Release Date:
2010-02-03
Secunia Advisory ID:
SA38395
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk RTP Comfort Noise Payload Denial of Service
Vendor Patch. Secunia Advisory 1 of 9 in 2009. 3,893 views.
Release Date:
2009-12-01
Secunia Advisory ID:
SA37530
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk SIP REGISTER Response User Enumeration Weakness
Vendor Patch. Secunia Advisory 2 of 9 in 2009. 3,494 views.
Release Date:
2009-11-05
Secunia Advisory ID:
SA37265
Solution Status:
Vendor Patch
Criticality:
Not critical
Impact:
Exposure of system information
Where:
From remote
Short Description:
A weakness has been reported in Asterisk, which can be exploited by malicious people to determine valid usernames. [Read More]


patched Asterisk SIP INVITE ACL Security Bypass
Vendor Patch. Secunia Advisory 3 of 9 in 2009. 2,989 views.
Release Date:
2009-10-27
Secunia Advisory ID:
SA37056
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
Security Bypass
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to bypass certain security restrictions. [Read More]


patched Asterisk IAX2 Call Number Exhaustion Denial of Service
Vendor Patch. Secunia Advisory 4 of 9 in 2009. 4,099 views.
Release Date:
2009-09-04
Secunia Advisory ID:
SA36593
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
DoS
Where:
From local network
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk SIP Channel Driver Denial of Service
Vendor Patch. Secunia Advisory 5 of 9 in 2009. 3,502 views.
Release Date:
2009-08-11
Secunia Advisory ID:
SA36227
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
Some vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk RTP Text Frames Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 6 of 9 in 2009. 5,753 views.
Release Date:
2009-07-28
Secunia Advisory ID:
SA36039
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk SIP Response User Enumeration Weakness
Vendor Patch. Secunia Advisory 7 of 9 in 2009. 3,624 views.
Release Date:
2009-04-03
Secunia Advisory ID:
SA34564
Solution Status:
Vendor Patch
Criticality:
Not critical
Impact:
Exposure of system information
Where:
From remote
Short Description:
A weakness has been reported in Asterisk, which can be exploited by malicious people to determine valid user names. [Read More]


patched Asterisk "pedantic" SIP Processing Denial of Service
Vendor Patch. Secunia Advisory 8 of 9 in 2009. 3,359 views.
Release Date:
2009-03-11
Secunia Advisory ID:
SA34229
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
Some vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk User Account Enumeration Weakness
Vendor Patch. Secunia Advisory 9 of 9 in 2009. 6,764 views.
Release Date:
2009-01-09
Secunia Advisory ID:
SA33453
Solution Status:
Vendor Patch
Criticality:
Not critical
Impact:
Exposure of system information
Where:
From local network
Short Description:
A weakness has been reported in Asterisk, which can be exploited by malicious people to identify valid user accounts. [Read More]


patched Asterisk IAX2 User Authentication Denial of Service
Vendor Patch. Secunia Advisory 1 of 7 in 2008. 5,619 views.
Release Date:
2008-12-11
Secunia Advisory ID:
SA32956
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
DoS
Where:
From local network
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk Two Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 2 of 7 in 2008. 7,644 views.
Release Date:
2008-07-23
Secunia Advisory ID:
SA31178
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
DoS
Where:
From local network
Short Description:
Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service) or to conduct DoS attacks. [Read More]


patched Asterisk "pedantic" SIP Processing Denial of Service
Vendor Patch. Secunia Advisory 3 of 7 in 2008. 7,252 views.
Release Date:
2008-06-04
Secunia Advisory ID:
SA30517
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk IAX2 Handshake Denial of Service
Vendor Patch. Secunia Advisory 4 of 7 in 2008. 10,760 views.
Release Date:
2008-04-23
Secunia Advisory ID:
SA29927
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
DoS
Where:
From local network
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk Predictable HTTP Manager ID Weakness
Vendor Workaround. Secunia Advisory 5 of 7 in 2008. 9,201 views.
Release Date:
2008-03-19
Secunia Advisory ID:
SA29449
Solution Status:
Vendor Workaround
Criticality:
Not critical
Impact:
Hijacking
Where:
From local network
Short Description:
Dino A. Dai Zovi has reported a weakness in Asterisk, which can be exploited by malicious people to hijack a user session. [Read More]


patched Asterisk Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 6 of 7 in 2008. 9,624 views.
Release Date:
2008-03-19
Secunia Advisory ID:
SA29426
Solution Status:
Vendor Patch
Criticality:
Highly critical
Impact:
Security Bypass
DoS
System access
Where:
From remote
Short Description:
Some vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system. [Read More]


patched Asterisk "BYE/Also" Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 7 of 7 in 2008. 11,425 views.
Release Date:
2008-01-03
Secunia Advisory ID:
SA28312
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk Registration Database Security Bypass
Vendor Patch. Secunia Advisory 1 of 15 in 2007. 11,415 views.
Release Date:
2007-12-19
Secunia Advisory ID:
SA28149
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
Security Bypass
Where:
From remote
Short Description:
A security issue has been reported in Asterisk, which can be exploited by malicious people to bypass certain security restrictions. [Read More]


patched Asterisk Postgres Realtime Engine SQL Injection
Vendor Patch. Secunia Advisory 2 of 15 in 2007. 11,939 views.
Release Date:
2007-11-30
Secunia Advisory ID:
SA27873
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
Manipulation of data
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to conduct SQL injection attacks. [Read More]


patched Asterisk Call Detail Record Postgres SQL Injection
Vendor Patch. Secunia Advisory 3 of 15 in 2007. 14,775 views.
Release Date:
2007-11-30
Secunia Advisory ID:
SA27827
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
Manipulation of data
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk and Asterisk Business Edition, which can be exploited by malicious users to conduct SQL injection attacks. [Read More]


patched Asterisk IMAP Storage Voicemail Buffer Overflow
Vendor Patch. Secunia Advisory 4 of 15 in 2007. 10,449 views.
Release Date:
2007-10-11
Secunia Advisory ID:
SA27184
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
System access
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially to compromise a vulnerable system. [Read More]


patched Asterisk Voicemail IMAP Backend Invalid MIME Denial of Service
Vendor Workaround. Secunia Advisory 5 of 15 in 2007. 11,463 views.
Release Date:
2007-08-27
Secunia Advisory ID:
SA26601
Solution Status:
Vendor Workaround
Criticality:
Less critical
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk SIP Channel Driver Dialog History Memory Exhaustion
Vendor Patch. Secunia Advisory 6 of 15 in 2007. 12,155 views.
Release Date:
2007-08-22
Secunia Advisory ID:
SA26553
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk Skinny Channel Driver Denial of Service
Vendor Patch. Secunia Advisory 7 of 15 in 2007. 11,207 views.
Release Date:
2007-08-08
Secunia Advisory ID:
SA26340
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]


patched Asterisk IAX2 Channel Driver Denial of Service
Vendor Patch. Secunia Advisory 8 of 15 in 2007. 12,808 views.
Release Date:
2007-07-30
Secunia Advisory ID:
SA26274
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
DoS
Where:
From local network
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 9 of 15 in 2007. 13,074 views.
Release Date:
2007-07-18
Secunia Advisory ID:
SA26099
Solution Status:
Vendor Patch
Criticality:
Highly critical
Impact:
DoS
System access
Where:
From remote
Short Description:
Some vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]


patched Asterisk IAX2 Channel Driver Information Disclosure
Vendor Workaround. Secunia Advisory 10 of 15 in 2007. 10,065 views.
Release Date:
2007-05-07
Secunia Advisory ID:
SA25134
Solution Status:
Vendor Workaround
Criticality:
Less critical
Impact:
Exposure of sensitive information
Where:
From local network
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious users to disclose potential sensitive information. [Read More]


patched Asterisk T.38 SDP Buffer Overflows and Management Interface Denial of Service
Vendor Patch. Secunia Advisory 11 of 15 in 2007. 15,625 views.
Release Date:
2007-04-25
Secunia Advisory ID:
SA24977
Solution Status:
Vendor Patch
Criticality:
Highly critical
Impact:
DoS
System access
Where:
From remote
Short Description:
Some vulnerabilities have been reported in Asterisk, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]


patched Asterisk AEL Extensions Security Bypass
Vendor Workaround. Secunia Advisory 12 of 15 in 2007. 8,590 views.
Release Date:
2007-04-03
Secunia Advisory ID:
SA24694
Solution Status:
Vendor Workaround
Criticality:
Less critical
Impact:
Security Bypass
Where:
From remote
Short Description:
A security issue has been reported in Asterisk, which can be exploited by malicious people to bypass certain security restrictions. [Read More]


patched Asterisk SIP Response Code Denial of Service
Vendor Patch. Secunia Advisory 13 of 15 in 2007. 20,145 views.
Release Date:
2007-03-22
Secunia Advisory ID:
SA24579
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
DoS
Where:
From remote
Short Description:
qwerty1979 has reported some vulnerabilities in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk SIP INVITE Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 14 of 15 in 2007. 12,956 views.
Release Date:
2007-03-21
Secunia Advisory ID:
SA24564
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk SIP Message Handling Denial of Service
Vendor Patch. Secunia Advisory 15 of 15 in 2007. 15,214 views.
Release Date:
2007-03-07
Secunia Advisory ID:
SA24380
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
MU Security Research Team has reported a vulnerability in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk SCCP Integer Overflow and SIP Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 5 in 2006. 14,510 views.
Release Date:
2006-10-20
Secunia Advisory ID:
SA22480
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
System access
Where:
From remote
Short Description:
Some vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]


patched Asterisk MGCP AUEP Response Handling Buffer Overflow
Vendor Patch. Secunia Advisory 2 of 5 in 2006. 13,777 views.
Release Date:
2006-08-24
Secunia Advisory ID:
SA21600
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
System access
Where:
From local network
Short Description:
Mu Security has reported a vulnerability in Asterisk, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]


patched Asterisk IAX2 Call Request Flooding Denial of Service
Vendor Patch. Secunia Advisory 3 of 5 in 2006. 11,940 views.
Release Date:
2006-07-17
Secunia Advisory ID:
SA21071
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
DoS
Where:
From local network
Short Description:
ISS X-Force has reported a vulnerability in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


patched Asterisk IAX2 Channel Driver Code Execution Vulnerability
Vendor Patch. Secunia Advisory 4 of 5 in 2006. 11,590 views.
Release Date:
2006-06-07
Secunia Advisory ID:
SA20497
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
System access
Where:
From local network
Short Description:
Core Security Technologies has reported a vulnerability in Asterisk, which can be exploited by malicious people to compromise a vulnerable system. [Read More]


patched Asterisk JPEG Image Handling Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 5 of 5 in 2006. 11,835 views.
Release Date:
2006-04-24
Secunia Advisory ID:
SA19800
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
System access
Where:
From local network
Short Description:
Emmanouel Kellinis has reported a vulnerability in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a vulnerable system. [Read More]


patched Asterisk "folder" Disclosure of Sound Files
Vendor Patch. Secunia Advisory 1 of 2 in 2005. 10,332 views.
Release Date:
2005-11-08
Secunia Advisory ID:
SA17459
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
Exposure of sensitive information
Where:
From remote
Short Description:
Assurance.com.au has reported a vulnerability in Asterisk, which can be exploited by malicious users to disclose sensitive information. [Read More]


patched Asterisk Manager Interface Command Processing Vulnerability
Vendor Patch. Secunia Advisory 2 of 2 in 2005. 9,070 views.
Release Date:
2005-06-23
Secunia Advisory ID:
SA15791
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
System access
Where:
From local network
Short Description:
Wade Alcorn has reported a vulnerability in Asterisk, which can be exploited by malicious users to compromise a vulnerable system. [Read More]


patched Asterisk CallerID SQL Injection Vulnerability
Vendor Patch. Secunia Advisory 1 of 2 in 2003. 9,016 views.
Release Date:
2003-09-13
Secunia Advisory ID:
SA9718
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
Manipulation of data
Exposure of sensitive information
Where:
From remote
Short Description:
A vulnerability has been identified in Asterisk, which can be exploited by malicious people to perform arbitrary database operations on a vulnerable system. [Read More]


patched Asterisk SIP Request Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 2 of 2 in 2003. 9,129 views.
Release Date:
2003-09-05
Secunia Advisory ID:
SA9674
Solution Status:
Vendor Patch
Criticality:
Highly critical
Impact:
System access
Where:
From remote
Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to compromise a vulnerable system. [Read More]





Discuss this Product
A new thread in our forum is automatically created for each Product. Activate the thread by commenting/discussing below.
Subject: Asterisk 1.x 
No posts yet

-

You must be logged in to post a comment.



 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


Secunia is a member of FIRST Secunia is a member of EDUcause Secunia is a member of The Open Group Secunia is a member of FS-ISAC
 
Secunia © 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability - Disclaimer
follow Secunia on Facebook follow Secunia on Twitter follow Secunia on LinkedIn follow Secunia on YouTube follow Secunia Xing follow Secunias RSS feed follow Secunia on Google+