CVE-2010-0441

Asterisk Open Source 1.6.0.x before 1.6.0.22, 1.6.1.x before 1.6.1.14, and 1.6.2.x before 1.6.2.2, and Business Edition C.3 before C.3.3.2, allows remote attackers to cause a denial of service (daemon crash) via an SIP T.38 negotiation with an SDP FaxMaxDatagram field that is (1) missing, (2) modified to contain a negative number, or (3) modified to contain a large number.
Severity
UNKNOWN
AV:N/AC:L/Au:N/C:N/I:N/A:P
Atk. Vector
NETWORK
Atk. Complexity
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: 99%
VendorProductVersion
asteriskasterisk
1.6.0
asteriskasterisk
1.6.0.1
asteriskasterisk
1.6.0.2
asteriskasterisk
1.6.0.3
asteriskasterisk
1.6.0.5
asteriskasterisk
1.6.0.6
asteriskasterisk
1.6.0.7
asteriskasterisk
1.6.0.8
asteriskasterisk
1.6.0.9
asteriskasterisk
1.6.0.10
asteriskasterisk
1.6.0.12
asteriskasterisk
1.6.0.13
asteriskasterisk
1.6.0.14
asteriskasterisk
1.6.0.15
asteriskasterisk
1.6.0.16-rc1
asteriskasterisk
1.6.0.16-rc2
asteriskasterisk
1.6.0.17
asteriskasterisk
1.6.0.18
asteriskasterisk
1.6.0.18-rc1
asteriskasterisk
1.6.0.18-rc2
asteriskasterisk
1.6.0.18-rc3
asteriskasterisk
1.6.0.19
asteriskasterisk
1.6.0.20
asteriskasterisk
1.6.0.20-rc1
asteriskasterisk
1.6.0.21
asteriskasterisk
1.6.0.21-rc1
asteriskasterisk
1.6.1.0
asteriskasterisk
1.6.1.1
asteriskasterisk
1.6.1.2
asteriskasterisk
1.6.1.4
asteriskasterisk
1.6.1.5
asteriskasterisk
1.6.1.6
asteriskasterisk
1.6.1.7-rc1
asteriskasterisk
1.6.1.7-rc2
asteriskasterisk
1.6.1.8
asteriskasterisk
1.6.1.9
asteriskasterisk
1.6.1.10
asteriskasterisk
1.6.1.10-rc1
asteriskasterisk
1.6.1.10-rc2
asteriskasterisk
1.6.1.10-rc3
asteriskasterisk
1.6.1.11
asteriskasterisk
1.6.1.12
asteriskasterisk
1.6.1.12-rc1
asteriskasterisk
1.6.1.13
asteriskasterisk
1.6.1.13-rc1
asteriskasterisk
1.6.2.1
asteriskasterisk
1.6.2.1-rc1
asteriskasterisk
1.6.10-rc1
asteriskasterisk
1.6.10-rc2
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
asterisk
bullseye
1:16.28.0~dfsg-0+deb11u4
fixed
lenny
not-affected
etch
not-affected
bullseye (security)
1:16.28.0~dfsg-0+deb11u5
fixed
sid
1:22.0.0~dfsg+~cs6.14.60671435-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
asterisk
natty
not-affected
maverick
not-affected
lucid
not-affected
karmic
ignored
jaunty
ignored
intrepid
ignored
hardy
not-affected
dapper
ignored