Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2007-6430

Asterisk Open Source 1.2.x before 1.2.26 and 1.4.x before 1.4.16, and Business Edition B.x.x before B.2.3.6 and C.x.x before C.1.0-beta8, when using database-based registrations ("realtime") and host-based authentication, does not check the IP address when the username is correct and there is no password, which allows remote attackers to bypass authentication using a valid username.

  • Published: Dec 20, 2007
  • Updated: Apr 13, 2023
  • CVE: CVE-2007-6430
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:P/I:N/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
asterisk / asterisk_business_edition b.2.2.0 b.2.2.0.x
asterisk / open_source 1.2.8 1.2.8.x
asterisk / open_source 1.2.14 1.2.14.x
asterisk / open_source 1.2.15 1.2.15.x
asterisk / open_source 1.4.9 1.4.9.x
asterisk / open_source 1.4.10 1.4.10.x
asterisk / open_source 1.4.6 1.4.6.x
asterisk / open_source 1.2.23 1.2.23.x
asterisk / open_source 1.4.15 1.4.15.x
asterisk / open_source 1.4beta 1.4beta.x
asterisk / asterisk_business_edition b.2.3.1 b.2.3.1.x
asterisk / open_source 1.2.24 1.2.24.x
asterisk / open_source 1.4.12 1.4.12.x
asterisk / open_source 1.4.13 1.4.13.x
asterisk / open_source 1.2.25 1.2.25.x
asterisk / open_source 1.2.11 1.2.11.x
asterisk / open_source 1.2.13 1.2.13.x
asterisk / asterisk_business_edition b.2.3.3 b.2.3.3.x
asterisk / open_source 1.4.2 1.4.2.x
asterisk / open_source 1.4.1 1.4.1.x
asterisk / open_source 1.2.5 1.2.5.x
asterisk / open_source 1.4.11 1.4.11.x
asterisk / open_source 1.2.21 1.2.21.x
asterisk / open_source 1.4.3 1.4.3.x
asterisk / asterisk_business_edition c.1.0beta7 c.1.0beta7.x
asterisk / open_source 1.4.7 1.4.7.x
asterisk / asterisk_business_edition b.1.3.2 b.1.3.2.x
asterisk / open_source 1.4.4 1.4.4.x
asterisk / open_source 1.2.7 1.2.7.x
asterisk / open_source 1.2.10 1.2.10.x
asterisk / open_source 1.2.17 1.2.17.x
asterisk / asterisk_business_edition b.1.3.3 b.1.3.3.x
asterisk / open_source 1.4.5 1.4.5.x
asterisk / asterisk_business_edition b.2.3.4 b.2.3.4.x
asterisk / open_source 1.2.0beta1 1.2.0beta1.x
asterisk / open_source 1.2.22 1.2.22.x
asterisk / open_source 1.4.14 1.4.14.x
asterisk / open_source 1.2.16 1.2.16.x
asterisk / open_source 1.2.9 1.2.9.x
asterisk / open_source 1.2.0beta2 1.2.0beta2.x
asterisk / open_source 1.2.19 1.2.19.x
asterisk / asterisk_business_edition b.2.2.1 b.2.2.1.x
asterisk / asterisk_business_edition b.2.3.2 b.2.3.2.x
asterisk / open_source 1.4.8 1.4.8.x
asterisk / open_source 1.2.6 1.2.6.x
asterisk / open_source 1.2.18 1.2.18.x