CVE-2012-2947
published 2012-06-02CVE-2012-2947: chan_iax2.c in the IAX2 channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before…
PriorityP413low2.6CVSS 2.0
AVNACHAuNCNINAP
EPSS
2.33%
81.4th percentile
chan_iax2.c in the IAX2 channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1, when a certain mohinterpret setting is enabled, allows remote attackers to cause a denial of service (daemon crash) by placing a call on hold.
Affected
51 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | asterisk | < asterisk 1:1.8.13.0~dfsg-1 (bullseye) | asterisk 1:1.8.13.0~dfsg-1 (bullseye) |
| debian | debian_linux | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
CVSS provenance
nvdv2.02.6LOWAV:N/AC:H/Au:N/C:N/I:N/A:P
osv2.6LOW
vendor_debian2.6LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-h4qr-ghfm-gmxm: chan_iax2
ghsa_unreviewed·2022-05-17
CVE-2012-2947 [LOW] CWE-284 GHSA-h4qr-ghfm-gmxm: chan_iax2
chan_iax2.c in the IAX2 channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1, when a certain mohinterpret setting is enabled, allows remote attackers to cause a denial of service (daemon crash) by placing a call on hold.
OSV
CVE-2012-2947: chan_iax2
osv·2012-06-02·CVSS 2.6
CVE-2012-2947 [LOW] CVE-2012-2947: chan_iax2
chan_iax2.c in the IAX2 channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1, when a certain mohinterpret setting is enabled, allows remote attackers to cause a denial of service (daemon crash) by placing a call on hold.
Debian
CVE-2012-2947: asterisk - chan_iax2.c in the IAX2 channel driver in Certified Asterisk 1.8.11-cert before ...
vendor_debian·2012·CVSS 2.6
CVE-2012-2947 [LOW] CVE-2012-2947: asterisk - chan_iax2.c in the IAX2 channel driver in Certified Asterisk 1.8.11-cert before ...
chan_iax2.c in the IAX2 channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1, when a certain mohinterpret setting is enabled, allows remote attackers to cause a denial of service (daemon crash) by placing a call on hold.
Scope: local
bullseye: resolved (fixed in 1:1.8.13.0~dfsg-1)
sid: resolved (fixed in 1:1.8.13.0~dfsg-1)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2012-2947 asterisk: Remote crash in IAX2 channel driver (AST-2012-007)
bugzilla·2012-05-30·CVSS 2.6
CVE-2012-2947 [LOW] CVE-2012-2947 asterisk: Remote crash in IAX2 channel driver (AST-2012-007)
CVE-2012-2947 asterisk: Remote crash in IAX2 channel driver (AST-2012-007)
A denial of service flaw was found in the way Inter-Asterisk eXchange Version 2 (IAX2) channel driver of Asterisk, an open source telephony toolkit, processed established calls, being placed on hold state without a suggested music class. When the mohinterpret=passthrough setting was enabled, a particular call was established and that call was placed on hold state without corresponding music-on-hold class name, Asterisk would dereference invalid pointer for music-on-hold class name, leading to asterisk executable crash.
References:
[1] http://downloads.asterisk.org/pub/security/AST-2012-007.html
[2] https://bugs.gentoo.org/show_bug.cgi?id=418189
Upstream patch (against the v1.8.x branch):
[3] https://code.asterisk
Bugzilla
CVE-2012-2947 CVE-2012-2948 asterisk various flaws [fedora-all]
bugzilla·2012-05-30·CVSS 2.6
CVE-2012-2947 [LOW] CVE-2012-2947 CVE-2012-2948 asterisk various flaws [fedora-all]
CVE-2012-2947 CVE-2012-2948 asterisk various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=826474
Bugzilla
CVE-2012-2947 CVE-2012-2948 asterisk various flaws [epel-6]
bugzilla·2012-05-30·CVSS 2.6
CVE-2012-2947 [LOW] CVE-2012-2947 CVE-2012-2948 asterisk various flaws [epel-6]
CVE-2012-2947 CVE-2012-2948 asterisk various flaws [epel-6]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=826474
ep
http://archives.neohapsis.com/archives/bugtraq/2012-05/0144.htmlhttp://downloads.asterisk.org/pub/security/AST-2012-007.htmlhttp://secunia.com/advisories/49303http://www.debian.org/security/2012/dsa-2493http://www.securitytracker.com/id?1027102http://archives.neohapsis.com/archives/bugtraq/2012-05/0144.htmlhttp://downloads.asterisk.org/pub/security/AST-2012-007.htmlhttp://secunia.com/advisories/49303http://www.debian.org/security/2012/dsa-2493http://www.securitytracker.com/id?1027102
2012-06-02
Published