Vulnerabilities > Digium > Asterisk
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-07-05 | CVE-2005-2081 | Unspecified vulnerability in Digium Asterisk 1.0.7 Stack-based buffer overflow in the function that parses commands in Asterisk 1.0.7, when the 'write = command' option is enabled, allows remote attackers to execute arbitrary code via a command that has two double quotes followed by a tab character. | 5.0 |
2003-09-22 | CVE-2003-0779 | Unspecified vulnerability in Digium Asterisk SQL injection vulnerability in the Call Detail Record (CDR) logging functionality for Asterisk allows remote attackers to execute arbitrary SQL via a CallerID string. | 7.5 |
2003-09-17 | CVE-2003-0761 | Remote Security vulnerability in Digium Asterisk 1.2.13 Buffer overflow in the get_msg_text of chan_sip.c in the Session Initiation Protocol (SIP) protocol implementation for Asterisk releases before August 15, 2003, allows remote attackers to execute arbitrary code via certain (1) MESSAGE or (2) INFO requests. | 7.5 |