CVE-2007-2488: CVE-2007-2488

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2007-2488

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The IAX2 channel driver (chan_iax2) in Asterisk before 20070504 does not properly null terminate data, which allows remote attackers to trigger loss of transmitted data, and possibly obtain sensitive information (memory contents) or cause a denial of service (application crash), by sending a frame that lacks a 0 byte.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Asterisk IAX2 Text Frame 信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Asterisk 中的IAX2 channel驱动(chan_iax2)没有正确的无效化终端数据，这使得远程攻击者可以通过发送一个缺少0byte的帧，触发终端数据丢失以及可能获得敏感信息(内存内容)或引起拒绝服务攻击(应用程序崩溃)。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2007-2488

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2007-2488

Please Login to view more intelligence information

http://ftp.digium.com/pub/asa/ASA-2007-013.pdfx_refsource_CONFIRM
http://secunia.com/advisories/25134third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/23824vdb-entryx_refsource_BID
http://osvdb.org/35769vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/25582third-party-advisoryx_refsource_SECUNIA
http://www.debian.org/security/2007/dsa-1358vendor-advisoryx_refsource_DEBIAN
http://www.vupen.com/english/advisories/2007/1661vdb-entryx_refsource_VUPEN
http://www.novell.com/linux/security/advisories/2007_34_asterisk.htmlvendor-advisoryx_refsource_SUSE
https://exchange.xforce.ibmcloud.com/vulnerabilities/34085vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2007-2488

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2007-2488

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2007-2488

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2007-2488

III. Intelligence Information for CVE-2007-2488

New Vulnerabilities

V. Comments for CVE-2007-2488

Leave a comment