Asterisk Open Source and Certified Asterisk 'chan_sip' Driver Authentication Bypass Vulnerability

Bugtraq ID: 94789
Class: Design Error
CVE: CVE-2016-9938
Remote: Yes
Local: No
Published: Dec 08 2016 12:00AM
Updated: Dec 20 2016 01:08AM
Credit: Walter Doekes
Vulnerable: Asterisk Open Source 14.0
Asterisk Open Source 13.0
Asterisk Open Source 11.0
Asterisk Certified Asterisk 13.8
Not Vulnerable: Asterisk Open Source 14.2.1
Asterisk Open Source 13.13.1
Asterisk Open Source 11.25.1
Asterisk Certified Asterisk 13.8-cert4
Asterisk Certified Asterisk 11.6-cert16


 

Privacy Statement
Copyright 2010, SecurityFocus