• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Asterisk RTP Codec Payload Handling Multiple Buffer Overflow Vulnerabilities

Bugtraq ID:	28308
Class:	Boundary Condition Error
CVE:	CVE-2008-1289
Remote:	Yes
Local:	No
Published:	Mar 18 2008 12:00AM
Updated:	Mar 24 2008 10:50PM
Credit:	Mu Security Research Team is credited with the discovery of these issues.
Vulnerable:	RedHat Fedora 8 0 RedHat Fedora 7 0 Asterisk s800i Appliance 1.1 0 Asterisk AsteriskNow 1.0 Asterisk Asterisk Business Edition C.1.0-beta8 Asterisk Asterisk Business Edition C.1.0-beta7 Asterisk Asterisk Appliance Developer Kit 1.4 Asterisk Asterisk 1.4.17 Asterisk Asterisk 1.4.16 Asterisk Asterisk 1.4.15 Asterisk Asterisk 1.4.14 Asterisk Asterisk 1.4.13 Asterisk Asterisk 1.4.12 Asterisk Asterisk 1.4.11 Asterisk Asterisk 1.4.10 Asterisk Asterisk 1.4.9 Asterisk Asterisk 1.4.8 Asterisk Asterisk 1.4.7 Asterisk Asterisk 1.4.6 Asterisk Asterisk 1.4.5 Asterisk Asterisk 1.4.4 Asterisk Asterisk 1.4.3 Asterisk Asterisk 1.4.2 Asterisk Asterisk 1.4.1 Asterisk Asterisk 1.4 revision 95946 Asterisk Asterisk 1.4 Beta
Not Vulnerable:	Asterisk s800i Appliance 1.1 2 Asterisk AsteriskNow 1.0.2 Asterisk Asterisk Business Edition C.1.6.1 Asterisk Asterisk Appliance Developer Kit 1.4 revision 109386 Asterisk Asterisk 1.6 beta6 Asterisk Asterisk 1.4.19 rc3 Asterisk Asterisk 1.4.18 1