FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  321198
Date:      2013-06-18
Time:      15:50:05Z
Committer: delphij

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
1c0def84-5fb1-11db-b2e9-0008c79fa3d2	asterisk -- remote heap overwrite vulnerability Adam Boileau of Security-Assessment.com reports: The Asterisk Skinny channel driver for Cisco SCCP phones (chan_skinny.so) incorrectly validates a length value in the packet header. An integer wrap-around leads to heap overwrite, and arbitrary remote code execution as root. Discovery 2006-10-17 Entry 2006-10-20 asterisk asterisk-bristuff lt 1.2.13 http://www.security-assessment.com/files/advisories/Asterisk_remote_heap_overflow.pdf http://marc.theaimsgroup.com/?l=bugtraq&m=116121567530170
1c0def84-5fb1-11db-b2e9-0008c79fa3d2	asterisk -- remote heap overwrite vulnerability Adam Boileau of Security-Assessment.com reports: The Asterisk Skinny channel driver for Cisco SCCP phones (chan_skinny.so) incorrectly validates a length value in the packet header. An integer wrap-around leads to heap overwrite, and arbitrary remote code execution as root. Discovery 2006-10-17 Entry 2006-10-20 asterisk asterisk-bristuff lt 1.2.13 http://www.security-assessment.com/files/advisories/Asterisk_remote_heap_overflow.pdf http://marc.theaimsgroup.com/?l=bugtraq&m=116121567530170

VuXML ID

Description

1c0def84-5fb1-11db-b2e9-0008c79fa3d2

asterisk -- remote heap overwrite vulnerability

Adam Boileau of Security-Assessment.com reports:

The Asterisk Skinny channel driver for Cisco SCCP phones (chan_skinny.so) incorrectly validates a length value in the packet header. An integer wrap-around leads to heap overwrite, and arbitrary remote code execution as root.

Discovery 2006-10-17
Entry 2006-10-20
asterisk
asterisk-bristuff

lt 1.2.13