• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Asterisk SIP Dialog History Resource Exhaustion Remote Denial of Service Vulnerability

Bugtraq ID:	25392
Class:	Design Error
CVE:	CVE-2007-4455
Remote:	Yes
Local:	No
Published:	Aug 21 2007 12:00AM
Updated:	Aug 31 2007 01:22AM
Credit:	Jon Moldenauer is credited with the discovery of this vulnerability.
Vulnerable:	Asterisk s800i Appliance 1.0.2 Asterisk s800i Appliance 1.0.1 Asterisk s800i Appliance 1.0 Asterisk AsteriskNow Beta 6 Asterisk AsteriskNow Beta 5 Asterisk Asterisk Appliance Developer Kit 0.7 Asterisk Asterisk Appliance Developer Kit 0.6 Asterisk Asterisk Appliance Developer Kit 0.5 Asterisk Asterisk Appliance Developer Kit 0.4 Asterisk Asterisk Appliance Developer Kit 0.3 Asterisk Asterisk Appliance Developer Kit 0.2 Asterisk Asterisk 1.4.10 Asterisk Asterisk 1.4.9 Asterisk Asterisk 1.4.8 Asterisk Asterisk 1.4.7 Asterisk Asterisk 1.4.4 Asterisk Asterisk 1.4.3 Asterisk Asterisk 1.4.2 Asterisk Asterisk 1.4.1 Asterisk Asterisk 1.4 Beta
Not Vulnerable:	Asterisk s800i Appliance 1.0.3 Asterisk AsteriskNow Beta 7 Asterisk Asterisk Appliance Developer Kit 0.8 Asterisk Asterisk 1.4.11