CVE-2012-1183
published 2012-09-18CVE-2012-1183: Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt application in Asterisk 1.4.x before 1.4.44, 1.6.x before 1.6.2.23, 1.8.x before…
PriorityP423medium4.3CVSS 2.0
AVNACMAuNCNINAP
EPSS
3.73%
88.4th percentile
Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt application in Asterisk 1.4.x before 1.4.44, 1.6.x before 1.6.2.23, 1.8.x before 1.8.10.1, and 10.x before 10.2.1, when the o option is used and the internal_timing option is off, allows remote attackers to cause a denial of service (application crash) via a large number of samples in an audio packet.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | asterisk | < asterisk 1:1.8.10.0~dfsg-1 (bullseye) | asterisk 1:1.8.10.0~dfsg-1 (bullseye) |
| debian | debian_linux | — | — |
| digium | asterisk | >= 0 < 1:1.8.10.0~dfsg-1 | 1:1.8.10.0~dfsg-1 |
| digium | asterisk | >= 1.4.0 < 1.4.44 | 1.4.44 |
| digium | asterisk | >= 1.6.0 < 1.6.2.23 | 1.6.2.23 |
| digium | asterisk | >= 1.8.0 < 1.8.10.1 | 1.8.10.1 |
| digium | asterisk | >= 10.0.0 < 10.2.1 | 10.2.1 |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv4.3MEDIUM
vendor_redhat10.0CRITICAL
vendor_debian4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
mesa: Arbitrary code execution via unspecified vectors related to 'array overflow'
vendor_redhat·2012-08-21·CVSS 10.0
CVE-2012-2864 [CRITICAL] mesa: Arbitrary code execution via unspecified vectors related to 'array overflow'
mesa: Arbitrary code execution via unspecified vectors related to 'array overflow'
Mesa, as used in Google Chrome before 21.0.1183.0 on the Acer AC700, Cr-48, and Samsung Series 5 and 5 550 Chromebook platforms, and the Samsung Chromebox Series 3, allows remote attackers to execute arbitrary code via unspecified vectors that trigger an "array overflow."
Statement: Not Vulnerable. This issue does not affect the version of mesa as shipped with Red Hat Enterprise Linux 5 and 6.
Package: mesa (Red Hat Enterprise Linux 5) - Not affected
Package: mesa (Red Hat Enterprise Linux 6) - Not affected
Debian
CVE-2012-1183: asterisk - Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt a...
vendor_debian·2012·CVSS 4.3
CVE-2012-1183 [MEDIUM] CVE-2012-1183: asterisk - Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt a...
Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt application in Asterisk 1.4.x before 1.4.44, 1.6.x before 1.6.2.23, 1.8.x before 1.8.10.1, and 10.x before 10.2.1, when the o option is used and the internal_timing option is off, allows remote attackers to cause a denial of service (application crash) via a large number of samples in an audio packet.
Scope: local
bullseye: resolved (fixed in 1:1.8.10.0~dfsg-1)
sid: resolved (fixed in 1:1.8.10.0~dfsg-1)
GHSA
GHSA-2w3g-954c-vrfq: Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt application in Asterisk 1
ghsa_unreviewed·2022-05-13
CVE-2012-1183 [MEDIUM] CWE-119 GHSA-2w3g-954c-vrfq: Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt application in Asterisk 1
Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt application in Asterisk 1.4.x before 1.4.44, 1.6.x before 1.6.2.23, 1.8.x before 1.8.10.1, and 10.x before 10.2.1, when the o option is used and the internal_timing option is off, allows remote attackers to cause a denial of service (application crash) via a large number of samples in an audio packet.
OSV
CVE-2012-1183: Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt application in Asterisk 1
osv·2012-09-18·CVSS 4.3
CVE-2012-1183 [MEDIUM] CVE-2012-1183: Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt application in Asterisk 1
Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt application in Asterisk 1.4.x before 1.4.44, 1.6.x before 1.6.2.23, 1.8.x before 1.8.10.1, and 10.x before 10.2.1, when the o option is used and the internal_timing option is off, allows remote attackers to cause a denial of service (application crash) via a large number of samples in an audio packet.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2012-2864 mesa: Arbitrary code execution via unspecified vectors related to 'array overflow'
bugzilla·2012-08-22·CVSS 10.0
CVE-2012-2864 [CRITICAL] CVE-2012-2864 mesa: Arbitrary code execution via unspecified vectors related to 'array overflow'
CVE-2012-2864 mesa: Arbitrary code execution via unspecified vectors related to 'array overflow'
Common Vulnerabilities and Exposures assigned an identifier CVE-2012-2864 to the following vulnerability:
Mesa, as used in Google Chrome before 21.0.1183.0 on the Acer AC700, Cr-48, and Samsung Series 5 and 5 550 Chromebook platforms, and the Samsung Chromebox Series 3, allows remote attackers to execute arbitrary code via unspecified vectors that trigger an "array overflow."
References:
[1] http://code.google.com/p/chromium/issues/detail?id=141901 (private)
[2] http://googlechromereleases.blogspot.com/2012/08/stable-channel-update-for-chrome-os.html
Discussion:
Upstream patch:
http://www.mail-archive.com/[email protected]/msg25207.html
---
Created mesa tracking bugs for thi
Bugzilla
CVE-2012-1183 CVE-2012-1184 asterisk various flaws [fedora-all]
bugzilla·2012-03-16·CVSS 4.3
CVE-2012-1183 [MEDIUM] CVE-2012-1183 CVE-2012-1184 asterisk various flaws [fedora-all]
CVE-2012-1183 CVE-2012-1184 asterisk various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=804038
Bugzilla
CVE-2012-1183 asterisk: Stack-based buffer overwrite by processing large audio packet in Miliwatt application (AST-2012-002)
bugzilla·2012-03-16·CVSS 4.3
CVE-2012-1183 [MEDIUM] CVE-2012-1183 asterisk: Stack-based buffer overwrite by processing large audio packet in Miliwatt application (AST-2012-002)
CVE-2012-1183 asterisk: Stack-based buffer overwrite by processing large audio packet in Miliwatt application (AST-2012-002)
An out-of stack-based buffer write flaw was found in the way the Miliwatt application of the Asterisk, open source telephony toolkit, performed generation of constant audio tone at 1000Hz (the 'o' option) from certain, provided audio packets, when the 'internal_timing' Asterisk configuration file option was disabled. In this configuration, a remote attacker could provide a specially-crafted audio packet file, which once processed by the Miliwatt application would lead to that application crash, or, potentially arbitrary code execution with the privileges of the user running the application.
Upstream security advisory:
[1] http://downloads.asterisk.org/pub/security/
http://archives.neohapsis.com/archives/bugtraq/2012-03/0069.htmlhttp://downloads.asterisk.org/pub/security/AST-2012-002-1.8.diffhttp://downloads.asterisk.org/pub/security/AST-2012-002.pdfhttp://osvdb.org/80125http://secunia.com/advisories/48417http://secunia.com/advisories/48941http://securitytracker.com/id?1026812http://www.asterisk.org/node/51797http://www.debian.org/security/2012/dsa-2460http://www.openwall.com/lists/oss-security/2012/03/16/10http://www.openwall.com/lists/oss-security/2012/03/16/17http://www.securityfocus.com/bid/52523https://exchange.xforce.ibmcloud.com/vulnerabilities/74082http://archives.neohapsis.com/archives/bugtraq/2012-03/0069.htmlhttp://downloads.asterisk.org/pub/security/AST-2012-002-1.8.diffhttp://downloads.asterisk.org/pub/security/AST-2012-002.pdfhttp://osvdb.org/80125http://secunia.com/advisories/48417http://secunia.com/advisories/48941http://securitytracker.com/id?1026812http://www.asterisk.org/node/51797http://www.debian.org/security/2012/dsa-2460http://www.openwall.com/lists/oss-security/2012/03/16/10http://www.openwall.com/lists/oss-security/2012/03/16/17http://www.securityfocus.com/bid/52523https://exchange.xforce.ibmcloud.com/vulnerabilities/74082
2012-09-18
Published