CVE-2008-1897
published 2008-04-23CVE-2008-1897: The IAX2 channel driver (chan_iax2) in Asterisk Open Source 1.0.x, 1.2.x before 1.2.28, and 1.4.x before 1.4.19.1; Business Edition A.x.x, B.x.x before…
PriorityP417medium4.3CVSS 2.0
AVNACMAuNCNINAP
EPSS
2.74%
84.3th percentile
The IAX2 channel driver (chan_iax2) in Asterisk Open Source 1.0.x, 1.2.x before 1.2.28, and 1.4.x before 1.4.19.1; Business Edition A.x.x, B.x.x before B.2.5.2, and C.x.x before C.1.8.1; AsteriskNOW before 1.0.3; Appliance Developer Kit 0.x.x; and s800i before 1.1.0.3, when configured to allow unauthenticated calls, does not verify that an ACK response contains a call number matching the server's reply to a NEW message, which allows remote attackers to cause a denial of service (traffic amplification) via a spoofed ACK response that does not complete a 3-way handshake. NOTE: this issue exists because of an incomplete fix for CVE-2008-1923.
Affected
104 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| asterisk | asterisk_appliance_developer_kit | — | — |
| asterisk | asterisk_appliance_developer_kit | — | — |
| asterisk | asterisk_appliance_developer_kit | — | — |
| asterisk | asterisk_appliance_developer_kit | — | — |
| asterisk | asterisk_appliance_developer_kit | — | — |
| asterisk | asterisk_appliance_developer_kit | — | — |
| asterisk | asterisk_appliance_developer_kit | — | — |
| asterisk | asterisk_appliance_developer_kit | — | — |
| asterisk | asterisk_appliance_developer_kit | >= 0 < 1:1.4.19.1~dfsg-1 | 1:1.4.19.1~dfsg-1 |
| asterisk | asterisk_business_edition | <= b.2.5.1 | — |
| asterisk | asterisk_business_edition | <= c1.8.0 | — |
| asterisk | asterisk_business_edition | — | — |
| asterisk | asterisk_business_edition | — | — |
| asterisk | asterisk_business_edition | — | — |
| asterisk | asterisk_business_edition | — | — |
| asterisk | asterisk_business_edition | — | — |
| asterisk | asterisk_business_edition | — | — |
| asterisk | asterisk_business_edition | — | — |
| asterisk | asterisk_business_edition | — | — |
| asterisk | asterisk_business_edition | — | — |
| asterisk | asterisk_business_edition | — | — |
| asterisk | asterisk_business_edition | — | — |
| asterisk | asterisk_business_edition | — | — |
| asterisk | asterisk_business_edition | — | — |
| asterisk | asterisk_business_edition | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv4.3MEDIUM
vendor_debian4.3MEDIUM
vendor_redhat4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
asterisk: 3-way handshake in IAX2 incomplete (CVE-2008-1923)
vendor_redhat·2008-04-22·CVSS 4.3
CVE-2008-1897 [MEDIUM] asterisk: 3-way handshake in IAX2 incomplete (CVE-2008-1923)
asterisk: 3-way handshake in IAX2 incomplete (CVE-2008-1923)
The IAX2 channel driver (chan_iax2) in Asterisk Open Source 1.0.x, 1.2.x before 1.2.28, and 1.4.x before 1.4.19.1; Business Edition A.x.x, B.x.x before B.2.5.2, and C.x.x before C.1.8.1; AsteriskNOW before 1.0.3; Appliance Developer Kit 0.x.x; and s800i before 1.1.0.3, when configured to allow unauthenticated calls, does not verify that an ACK response contains a call number matching the server's reply to a NEW message, which allows remote attackers to cause a denial of service (traffic amplification) via a spoofed ACK response that does not complete a 3-way handshake. NOTE: this issue exists because of an incomplete fix for CVE-2008-1923.
Debian
CVE-2008-1897: asterisk - The IAX2 channel driver (chan_iax2) in Asterisk Open Source 1.0.x, 1.2.x before ...
vendor_debian·2008·CVSS 4.3
CVE-2008-1897 [MEDIUM] CVE-2008-1897: asterisk - The IAX2 channel driver (chan_iax2) in Asterisk Open Source 1.0.x, 1.2.x before ...
The IAX2 channel driver (chan_iax2) in Asterisk Open Source 1.0.x, 1.2.x before 1.2.28, and 1.4.x before 1.4.19.1; Business Edition A.x.x, B.x.x before B.2.5.2, and C.x.x before C.1.8.1; AsteriskNOW before 1.0.3; Appliance Developer Kit 0.x.x; and s800i before 1.1.0.3, when configured to allow unauthenticated calls, does not verify that an ACK response contains a call number matching the server's reply to a NEW message, which allows remote attackers to cause a denial of service (traffic amplification) via a spoofed ACK response that does not complete a 3-way handshake. NOTE: this issue exists because of an incomplete fix for CVE-2008-1923.
Scope: local
bullseye: resolved (fixed in 1:1.4.19.1~dfsg-1)
sid: resolved (fixed in 1:1.4.19.1~dfsg-1)
GHSA
GHSA-653q-fj3p-cqrg: The IAX2 channel driver (chan_iax2) in Asterisk Open Source 1
ghsa_unreviewed·2022-05-01·CVSS 7.1
CVE-2008-1897 [HIGH] CWE-287 GHSA-653q-fj3p-cqrg: The IAX2 channel driver (chan_iax2) in Asterisk Open Source 1
The IAX2 channel driver (chan_iax2) in Asterisk Open Source 1.0.x, 1.2.x before 1.2.28, and 1.4.x before 1.4.19.1; Business Edition A.x.x, B.x.x before B.2.5.2, and C.x.x before C.1.8.1; AsteriskNOW before 1.0.3; Appliance Developer Kit 0.x.x; and s800i before 1.1.0.3, when configured to allow unauthenticated calls, does not verify that an ACK response contains a call number matching the server's reply to a NEW message, which allows remote attackers to cause a denial of service (traffic amplification) via a spoofed ACK response that does not complete a 3-way handshake. NOTE: this issue exists because of an incomplete fix for CVE-2008-1923.
OSV
CVE-2008-1897: The IAX2 channel driver (chan_iax2) in Asterisk Open Source 1
osv·2008-04-23·CVSS 4.3
CVE-2008-1897 [MEDIUM] CVE-2008-1897: The IAX2 channel driver (chan_iax2) in Asterisk Open Source 1
The IAX2 channel driver (chan_iax2) in Asterisk Open Source 1.0.x, 1.2.x before 1.2.28, and 1.4.x before 1.4.19.1; Business Edition A.x.x, B.x.x before B.2.5.2, and C.x.x before C.1.8.1; AsteriskNOW before 1.0.3; Appliance Developer Kit 0.x.x; and s800i before 1.1.0.3, when configured to allow unauthenticated calls, does not verify that an ACK response contains a call number matching the server's reply to a NEW message, which allows remote attackers to cause a denial of service (traffic amplification) via a spoofed ACK response that does not complete a 3-way handshake. NOTE: this issue exists because of an incomplete fix for CVE-2008-1923.
No detection rules found.
No public exploits indexed.
http://bugs.digium.com/view.php?id=10078http://downloads.digium.com/pub/security/AST-2008-006.htmlhttp://secunia.com/advisories/29927http://secunia.com/advisories/30010http://secunia.com/advisories/30042http://secunia.com/advisories/34982http://security.gentoo.org/glsa/glsa-200905-01.xmlhttp://www.altsci.com/concepts/page.php?s=asteri&p=2http://www.debian.org/security/2008/dsa-1563http://www.securityfocus.com/archive/1/491220/100/0/threadedhttp://www.securityfocus.com/bid/28901http://www.securitytracker.com/id?1019918http://www.vupen.com/english/advisories/2008/1324https://downloads.asterisk.org/pub/security/AST-2008-006.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/41966https://github.com/jcollie/asterisk/commit/60de4fbbdf3ede49f158e23a9e3b679f2e519c1ehttps://github.com/jcollie/asterisk/commit/771b3d8749b34b6eea4e03a2e514380da9582f90https://github.com/jcollie/asterisk/commit/a8b180875b037b8da26f6a3bcc8e5e98b8c904d2https://github.com/kaoru6/asterisk/commit/1fe14f38dd43dc894d21f85762b51208ba5c8acbhttps://github.com/lyx2014/Asterisk/commit/0670e43c30135044e25cca7f80e1833e2c128653https://github.com/mojolingo/asterisk/commit/20ac3662f137dbf7f42d5295590069a7d3b1166bhttps://github.com/pruiz/asterisk/commit/e0ef9bd22810c6969a7f222eec04798f19a7e2d6https://github.com/silentindark/asterisk-1/commit/fe8b7f31db687f8b9992864b82c93d22833019c7https://github.com/xrg/asterisk-xrg/commit/10da3dab24e8ca08cf2c983f8d0206e383535b5ahttps://github.com/xrg/asterisk-xrg/commit/51714a24347dc57f9a208a4a8af84115ef407b83https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00581.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-April/msg00600.htmlhttp://bugs.digium.com/view.php?id=10078http://downloads.digium.com/pub/security/AST-2008-006.htmlhttp://secunia.com/advisories/29927http://secunia.com/advisories/30010http://secunia.com/advisories/30042http://secunia.com/advisories/34982http://security.gentoo.org/glsa/glsa-200905-01.xmlhttp://www.altsci.com/concepts/page.php?s=asteri&p=2http://www.debian.org/security/2008/dsa-1563http://www.securityfocus.com/archive/1/491220/100/0/threadedhttp://www.securityfocus.com/bid/28901http://www.securitytracker.com/id?1019918http://www.vupen.com/english/advisories/2008/1324https://downloads.asterisk.org/pub/security/AST-2008-006.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/41966https://github.com/jcollie/asterisk/commit/60de4fbbdf3ede49f158e23a9e3b679f2e519c1ehttps://github.com/jcollie/asterisk/commit/771b3d8749b34b6eea4e03a2e514380da9582f90https://github.com/jcollie/asterisk/commit/a8b180875b037b8da26f6a3bcc8e5e98b8c904d2https://github.com/kaoru6/asterisk/commit/1fe14f38dd43dc894d21f85762b51208ba5c8acbhttps://github.com/lyx2014/Asterisk/commit/0670e43c30135044e25cca7f80e1833e2c128653https://github.com/mojolingo/asterisk/commit/20ac3662f137dbf7f42d5295590069a7d3b1166bhttps://github.com/pruiz/asterisk/commit/e0ef9bd22810c6969a7f222eec04798f19a7e2d6https://github.com/silentindark/asterisk-1/commit/fe8b7f31db687f8b9992864b82c93d22833019c7https://github.com/xrg/asterisk-xrg/commit/10da3dab24e8ca08cf2c983f8d0206e383535b5ahttps://github.com/xrg/asterisk-xrg/commit/51714a24347dc57f9a208a4a8af84115ef407b83https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00581.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-April/msg00600.html
2008-04-23
Published