exploit the possibilities

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 1 of 1

Files

ASA-2007-015.txt: Posted Jul 18, 2007; Authored by Russell Bryant | Site asterisk.org; Asterisk Project Security Advisory - The Asterisk IAX2 channel driver, chan_iax2, has a remotely exploitable crash vulnerability. A NULL pointer exception can occur when Asterisk receives a LAGRQ or LAGRP frame that is part of a valid session and includes information elements. The session used to exploit this issue does not have to be authenticated. It can simply be a NEW packet sent with an invalid username. The code that parses the incoming frame correctly parses the information elements of IAX frames. It then sets a pointer to NULL to indicate that there is not a raw data payload associated with this frame. However, it does not set the variable that indicates the number of bytes in the raw payload back to zero. Since the raw data length is non-zero, the code handling LAGRQ and LAGRP frames tries to copy data from a NULL pointer, causing a crash.; tags | advisory; advisories | CVE-2007-3763; SHA-256 | 82005035f0af5942ecb9961ae6e9407bfeadba79e2de888767b6b9905cdf838f; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 285 files
Ubuntu 66 files
Debian 23 files
LiquidWorm 10 files
Valentin Lobstein 10 files
nu11secur1ty 7 files
Google Security Research 4 files
Milad Karimi 4 files
Jann Horn 3 files
Lennert Preuth 3 files

Recent News

Indonesia Sneakily Buys Spyware, Claims Amnesty International: Posted May 3, 2024; tags | headline, government, privacy, spyware, indonesia; Favorite | View

1,400 GitLab Servers Impacted By Exploited Vulnerability: Posted May 2, 2024; tags | headline, hacker, data loss, flaw; Favorite | View

Hackers Compromised Dropbox eSignature Service: Posted May 2, 2024; tags | headline, hacker, flaw; Favorite | View

Hacker Free-For-All Fights For Control Of Home And Office Routers Everywhere: Posted May 2, 2024; tags | headline, hacker, microsoft, email, spam, botnet; Favorite | View

REvil Ransomware Scum Gets 14 Years, $16 Million Fine: Posted May 2, 2024; tags | headline, hacker, malware, cybercrime, fraud, cryptography, ukraine; Favorite | View

Here's Your Chance To Own A Decommissioned US Government Supercomputer: Posted May 2, 2024; tags | headline, government, usa; Favorite | View

Qantas App Glitch Sees Boarding Passes Fly To Other Accounts: Posted May 1, 2024; tags | headline, privacy, data loss, flaw; Favorite | View

Adobe Adds Content Credentials And Firefly To Bug Bounty Program: Posted May 1, 2024; tags | headline, flaw, adobe; Favorite | View

Google Boosts Bug Bounty Payouts Tenfold In Mobile App Security Push: Posted May 1, 2024; tags | headline, flaw, google; Favorite | View

London Drugs Pharmacy Closes All Stores To Respond To Cyber Incident: Posted May 1, 2024; tags | headline, hacker, privacy, britain, data loss; Favorite | View

View More News →

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec