Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt application in Asterisk 1.4.x before 1.4.44, 1.6.x before 1.6.2.23, 1.8.x before 1.8.10.1, and 10.x before 10.2.1, when the o option is used and the internal_timing option is off, allows remote attackers to cause a denial of service (application crash) via a large number of samples in an audio packet.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Asterisk 远程拒绝服务漏洞
Vulnerability Description
Digium Asterisk是美国Digium公司的一套开源的电话交换机(PBX)系统软件。该软件支持语音信箱、多方语音会议、交互式语音应答(IVR)等。 Asterisk 1.4.44之前的1.4.x版本、1.6.2.23之前的1.6.x版本、1.8.10.1之前的1.8.x版本、10.2.1之前的10.x版本中的Miliwatt应用程序中的‘milliwatt_generate’函数中存在缓冲区溢出漏洞。当使用o选项和internal_timing选项关闭时,远程攻击者可利用该漏洞通过音频数据包中大
CVSS Information
N/A
Vulnerability Type
N/A