Asterisk 1.x - Advisories by Product - Secunia Advisories - Vulnerability Information

This vulnerability report for Asterisk 1.x contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.

If you have information about a new or an existing vulnerability in Asterisk 1.x then you are more than welcome to contact us.

Table of Contents

1. Product Summary Only

2. Secunia Advisory Statistics (All time)

2.1. Statistics for 2009

2.2. Statistics for 2008

2.3. Statistics for 2007

2.4. Statistics for 2006

2.5. Statistics for 2005

2.6. Statistics for 2004

2.7. Statistics for 2003

3. List of Secunia Advisories (All time)

3.1. List for 2009

3.2. List for 2008

3.3. List for 2007

3.4. List for 2006

3.5. List for 2005

3.6. List for 2004

3.7. List for 2003

4. Send Feedback

Vendor, Links, and Unpatched Vulnerabilities

Vendor	N/A

Product Link	View Here (Link to external site)

Affected By	40 Secunia advisories 58 Vulnerabilities

Monitor Product	Receive alerts for this product

Unpatched	0% (0 of 40 Secunia advisories)

Most Critical Unpatched There are no unpatched Secunia advisories affecting this product, when all vendor patches are applied..

9 Secunia Advisories in 2009

Secunia has issued a total of 9 Secunia advisories in 2009 for Asterisk 1.x. Currently, 0% (0 out of 9) are marked as unpatched.

More information about the specific Secunia advisories affecting Asterisk 1.x can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.

Asterisk RTP Comfort Noise Payload Denial of Service
Vendor Patch. Secunia Advisory 1 of 9 in 2009. 187 views.

Release Date:
2009-12-01

Secunia Advisory ID:
SA37530

Solution Status:
Vendor Patch

Criticality:

Impact:
DoS

Where:
From remote

Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]

Asterisk SIP REGISTER Response User Enumeration Weakness
Vendor Patch. Secunia Advisory 2 of 9 in 2009. 520 views.

Release Date:
2009-11-05

Secunia Advisory ID:
SA37265

Solution Status:
Vendor Patch

Criticality:

Impact:
Exposure of system information

Where:
From remote

Short Description:
A weakness has been reported in Asterisk, which can be exploited by malicious people to determine valid usernames. [Read More]

Asterisk SIP INVITE ACL Security Bypass
Vendor Patch. Secunia Advisory 3 of 9 in 2009. 476 views.

Release Date:
2009-10-27

Secunia Advisory ID:
SA37056

Solution Status:
Vendor Patch

Criticality:

Impact:
Security Bypass

Where:
From remote

Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to bypass certain security restrictions. [Read More]

Asterisk IAX2 Call Number Exhaustion Denial of Service
Vendor Patch. Secunia Advisory 4 of 9 in 2009. 782 views.

Release Date:
2009-09-04

Secunia Advisory ID:
SA36593

Solution Status:
Vendor Patch

Criticality:

Impact:
DoS

Where:
From local network

Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]

Asterisk SIP Channel Driver Denial of Service
Vendor Patch. Secunia Advisory 5 of 9 in 2009. 700 views.

Release Date:
2009-08-11

Secunia Advisory ID:
SA36227

Solution Status:
Vendor Patch

Criticality:

Impact:
DoS

Where:
From remote

Short Description:
Some vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]

Asterisk RTP Text Frames Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 6 of 9 in 2009. 1,195 views.

Release Date:
2009-07-28

Secunia Advisory ID:
SA36039

Solution Status:
Vendor Patch

Criticality:

Impact:
DoS

Where:
From remote

Short Description:
A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]

Asterisk SIP Response User Enumeration Weakness
Vendor Patch. Secunia Advisory 7 of 9 in 2009. 978 views.

Release Date:
2009-04-03

Secunia Advisory ID:
SA34564

Solution Status:
Vendor Patch

Criticality:

Impact:
Exposure of system information

Where:
From remote

Short Description:
A weakness has been reported in Asterisk, which can be exploited by malicious people to determine valid user names. [Read More]

Asterisk "pedantic" SIP Processing Denial of Service
Vendor Patch. Secunia Advisory 8 of 9 in 2009. 906 views.

Release Date:
2009-03-11

Secunia Advisory ID:
SA34229

Solution Status:
Vendor Patch

Criticality:

Impact:
DoS

Where:
From remote

Short Description:
Some vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]

Asterisk User Account Enumeration Weakness
Vendor Patch. Secunia Advisory 9 of 9 in 2009. 2,771 views.

Release Date:
2009-01-09

Secunia Advisory ID:
SA33453

Solution Status:
Vendor Patch

Criticality:

Impact:
Exposure of system information

Where:
From local network

Short Description:
A weakness has been reported in Asterisk, which can be exploited by malicious people to identify valid user accounts. [Read More]