Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Gentoo: GLSA-200610-15 High: Asterisk Remote Code Execution & DoS

gentoo
Calendar Grey October 30, 2006
Dist Gentoo Esm H88
Critical security alert for Asterisk on Gentoo: several weaknesses enabling remote code execution or service disruption.
Asterisk is vulnerable to the remote execution of arbitrary code or a Denial of Service.

Summary

Gentoo Linux Security Advisory GLSA 200610-15 https://security.gentoo.org/ Severity: High Title: Asterisk: Multiple vulnerabilities Date: October 30, 2006 Bugs: #144941, #151881 ID: 200610-15

Synopsis ======= Asterisk is vulnerable to the remote execution of arbitrary code or a Denial of Service.
Background ========= Asterisk is an open source implementation of a telephone private branch exchange (PBX).
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-misc/asterisk < 1.2.13 >= 1.2.13
========== Asterisk contains buffer overflows in channels/chan_mgcp.c from the MGCP driver and in channels/chan_skinny.c from the Skinny channel driver for Cisco SCCP phone...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory denial of service high severity remote access asterisk

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns


Warning: Undefined array key "advisory_info" in /var/www/www.linuxsecurity.com-443/html/tmp/regularlabs/custom_php/3820813_4c9dbbdde36eef04251a4ced7eac4df9 on line 11

Topics%20covered

Topics Covered

security advisory denial of service high severity remote access asterisk

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Related News

Your message here