Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
SecuriTeam™  Beyond Security®  SecuriTeam™ Home  Ask the Team  Mailing Lists  Advertising Info  Blogs SecuriTeam™ in Your Inbox   E-mail this CVE-2008-2119 to a friend New vulnerability? New tool? Tell us	CVE-2008-2119 Asterisk Crash Vulnerability In SIP Channel Driver When run in Pedantic Mode     Credit: The information has been provided by Asterisk Security Team. The original article can be found at: http://downloads.digium.com/pub/security/AST-2008-008.html    CVE-2008-2119 Details Check for CVE-2008-2119 Scan your system for new vulnerabilities. Signup now and get the first month free! beyondsecurity.com/vulnerability-scanner Vulnerable Systems:  * Asterisk Open Source versions 1.0.x  * Asterisk Open Source version 1.2.28 and prior  * Asterisk Business Edition versions A.x.x  * Asterisk Business Edition version B.2.5.2 and prior Immune Systems:  * Asterisk Open Source version 1.2.29  * Asterisk Open Source versions 1.4.x  * Asterisk Business Edition version B.2.5.3  * Asterisk Business Edition versions C.x.x  * AsteriskNOW versions 1.0.x  * Asterisk Appliance Developer Kit versions 0.x.x  * s800i (Asterisk Appliance) versions 1.0.x Resolution: The From header value is now copied into a buffer before being passed to the ast_uri_decode function if pedantic is enabled and in another instance it is checked to be non-NULL before being passed. CVE Information: CVE-2008-2119  Comments on CVE-2008-2119:  Add new comment:  Subject:  Name/Nick/Email:          Chars Left:	All Sections Security News Unix focus Exploits Tools Windows focus Security Reviews
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

Copyright © 1998-2008 Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®