[Forgot Password]
Login  Register Subscribe

23631

 
 

126951

 
 

99602

 
 

909

 
 

80130

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2016-7551

Date: (C)2017-04-21   (M)2017-12-06 


chain_sip in Asterisk Open Source 11.x before 11.23.1 and 13.x 13.11.1 and Certified Asterisk 11.6 before 11.6-cert15 and 13.8 before 13.8-cert3 allows remote attackers to cause a denial of service (port exhaustion).

CVSS Score: 5.0Access Vector: NETWORK
Exploit Score: 10.0Access Complexity: LOW
Impact Score: 2.9Authentication: NONE
 Confidentiality: NONE
 Integrity: NONE
 Availability: PARTIAL





Reference:
DSA-3700
http://downloads.asterisk.org/pub/security/AST-2016-007.html
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=838832
https://bugzilla.redhat.com/show_bug.cgi?id=1374733
https://issues.asterisk.org/jira/browse/ASTERISK-26272

CPE    91
cpe:/a:digium:asterisk:11.2.0:rc1
cpe:/a:digium:certified_asterisk:11.6:cert3
cpe:/a:digium:certified_asterisk:11.6:cert2
cpe:/a:digium:certified_asterisk:11.6:cert1
...
CWE    1
CWE-399
OVAL    1
oval:org.secpod.oval:def:602653

© 2013 SecPod Technologies