Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2008-2119

Asterisk Open Source 1.0.x and 1.2.x before 1.2.29 and Business Edition A.x.x and B.x.x before B.2.5.3, when pedantic parsing (aka pedanticsipchecking) is enabled, allows remote attackers to cause a denial of service (daemon crash) via a SIP INVITE message that lacks a From header, related to invocations of the ast_uri_decode function, and improper handling of (1) an empty const string and (2) a NULL pointer.

  • Published: Jun 4, 2008
  • Updated: Apr 13, 2023
  • CVE: CVE-2008-2119
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:N/A:P

CWEs:

Software From Fixed in
asterisk / asterisk_business_edition b2.5.1 b2.5.1.x
asterisk / asterisk_business_edition b.2.2.0 b.2.2.0.x
asterisk / open_source 1.0.1 1.0.1.x
asterisk / open_source 1.2.14 1.2.14.x
asterisk / open_source 1.0.4 1.0.4.x
asterisk / open_source 1.0 1.0.x
asterisk / open_source 1.2.15 1.2.15.x
asterisk / open_source 1.2.27 1.2.27.x
asterisk / open_source 1.2.23 1.2.23.x
asterisk / open_source 1.2.26.1 1.2.26.1.x
asterisk / open_source 1.0.2 1.0.2.x
asterisk / open_source 1.2.1 1.2.1.x
asterisk / open_source 1.0.11 1.0.11.x
asterisk / asterisk_business_edition b.2.3.1 b.2.3.1.x
asterisk / open_source 1.2.24 1.2.24.x
asterisk / open_source 1.0.6 1.0.6.x
asterisk / open_source 1.2.0 1.2.0.x
asterisk / open_source 1.2.25 1.2.25.x
asterisk / open_source 1.2.11 1.2.11.x
asterisk / open_source 1.2.12 1.2.12.x
asterisk / open_source 1.2.13 1.2.13.x
asterisk / asterisk_business_edition b.2.5.0 b.2.5.0.x
asterisk / asterisk_business_edition b.2.3.3 b.2.3.3.x
asterisk / open_source 1.2.2 1.2.2.x
asterisk / open_source 1.0.5 1.0.5.x
asterisk / open_source 1.0.3 1.0.3.x
asterisk / open_source 1.2.26 1.2.26.x
asterisk / open_source 1.0.12 1.0.12.x
asterisk / open_source 1.2.21 1.2.21.x
asterisk / open_source 1.0.9 1.0.9.x
asterisk / asterisk_business_edition b.1.3.2 b.1.3.2.x
asterisk / open_source 1.0.7 1.0.7.x
asterisk / open_source 1.2.26.2 1.2.26.2.x
asterisk / open_source - 1.2.28.x
asterisk / open_source 1.2.10 1.2.10.x
asterisk / open_source 1.2.17 1.2.17.x
asterisk / asterisk_business_edition b.1.3.3 b.1.3.3.x
asterisk / open_source 1.2.20 1.2.20.x
asterisk / asterisk_business_edition b.2.3.4 b.2.3.4.x
asterisk / open_source 1.0.8 1.0.8.x
asterisk / open_source 1.2.0beta1 1.2.0beta1.x
asterisk / open_source 1.2.22 1.2.22.x
asterisk / asterisk_business_edition - b2.5.2.x
asterisk / open_source 1.2.16 1.2.16.x
asterisk / open_source 1.2.12.1 1.2.12.1.x
asterisk / open_source 1.2.0beta2 1.2.0beta2.x
asterisk / open_source 1.2.21.1 1.2.21.1.x
asterisk / open_source 1.0.0 1.0.0.x
asterisk / open_source 1.2.19 1.2.19.x
asterisk / asterisk_business_edition b.2.2.1 b.2.2.1.x
asterisk / asterisk_business_edition b.2.3.2 b.2.3.2.x
asterisk / open_source 1.2.18 1.2.18.x
asterisk / open_source 1.0.11.1 1.0.11.1.x