CVE-2012-2948
published 2012-06-02CVE-2012-2948: chan_skinny.c in the Skinny (aka SCCP) channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and…
PriorityP415medium4CVSS 2.0
AVNACLAuSCNINAP
EPSS
2.14%
79.8th percentile
chan_skinny.c in the Skinny (aka SCCP) channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by closing a connection in off-hook mode.
Affected
40 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| asterisk | certified_asterisk | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| debian | asterisk | < asterisk 1:1.8.13.0~dfsg-1 (bullseye) | asterisk 1:1.8.13.0~dfsg-1 (bullseye) |
| debian | asterisk | — | — |
| digium | asterisk | — | — |
| digium | asterisk | — | — |
CVSS provenance
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:N/I:N/A:P
osv4.0MEDIUM
vendor_debian4.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2012-3553: asterisk - chan_skinny.c in the Skinny (aka SCCP) channel driver in Asterisk Open Source 10...
vendor_debian·2012·CVSS 4.0
CVE-2012-3553 [MEDIUM] CVE-2012-3553: asterisk - chan_skinny.c in the Skinny (aka SCCP) channel driver in Asterisk Open Source 10...
chan_skinny.c in the Skinny (aka SCCP) channel driver in Asterisk Open Source 10.x before 10.5.1 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by sending a Station Key Pad Button message and closing a connection in off-hook mode, a related issue to CVE-2012-2948.
Scope: local
bullseye: resolved
sid: resolved
Debian
CVE-2012-2948: asterisk - chan_skinny.c in the Skinny (aka SCCP) channel driver in Certified Asterisk 1.8....
vendor_debian·2012·CVSS 4.0
CVE-2012-2948 [MEDIUM] CVE-2012-2948: asterisk - chan_skinny.c in the Skinny (aka SCCP) channel driver in Certified Asterisk 1.8....
chan_skinny.c in the Skinny (aka SCCP) channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by closing a connection in off-hook mode.
Scope: local
bullseye: resolved (fixed in 1:1.8.13.0~dfsg-1)
sid: resolved (fixed in 1:1.8.13.0~dfsg-1)
GHSA
GHSA-9mqv-jvm5-5mv6: chan_skinny
ghsa_unreviewed·2022-05-17·CVSS 4.0
CVE-2012-3553 [MEDIUM] GHSA-9mqv-jvm5-5mv6: chan_skinny
chan_skinny.c in the Skinny (aka SCCP) channel driver in Asterisk Open Source 10.x before 10.5.1 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by sending a Station Key Pad Button message and closing a connection in off-hook mode, a related issue to CVE-2012-2948.
GHSA
GHSA-chr5-w9ff-5gcw: chan_skinny
ghsa_unreviewed·2022-05-17
CVE-2012-2948 [MEDIUM] GHSA-chr5-w9ff-5gcw: chan_skinny
chan_skinny.c in the Skinny (aka SCCP) channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by closing a connection in off-hook mode.
OSV
CVE-2012-2948: chan_skinny
osv·2012-06-02·CVSS 4.0
CVE-2012-2948 [MEDIUM] CVE-2012-2948: chan_skinny
chan_skinny.c in the Skinny (aka SCCP) channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by closing a connection in off-hook mode.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2012-2948 asterisk: Remote crash in Skinny channel driver (AST-2012-008)
bugzilla·2012-05-30·CVSS 4.0
CVE-2012-2948 [MEDIUM] CVE-2012-2948 asterisk: Remote crash in Skinny channel driver (AST-2012-008)
CVE-2012-2948 asterisk: Remote crash in Skinny channel driver (AST-2012-008)
A denial of service flaw was found in the way Skinny protocol implementation / driver of the Asterisk, an open source telephony toolkit, performed SCCP connection close. An authenticated Asterisk user (with valid SCCP ID) could use this flaw to cause asterisk executable to crash (dereference NULL pointer) by closing the connection to the Asterisk server in certain call states ("Off hook" for example).
References:
[1] http://downloads.asterisk.org/pub/security/AST-2012-008.html
[2] https://bugs.gentoo.org/show_bug.cgi?id=418191
Upstream ticket:
[3] https://issues.asterisk.org/jira/browse/ASTERISK-19905
Upstream patches:
[4] http://downloads.asterisk.org/pub/security/AST-2012-008-1.8.diff
(against 1.8.x branch)
Bugzilla
CVE-2012-2947 CVE-2012-2948 asterisk various flaws [fedora-all]
bugzilla·2012-05-30·CVSS 2.6
CVE-2012-2947 [LOW] CVE-2012-2947 CVE-2012-2948 asterisk various flaws [fedora-all]
CVE-2012-2947 CVE-2012-2948 asterisk various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=826474
Bugzilla
CVE-2012-2947 CVE-2012-2948 asterisk various flaws [epel-6]
bugzilla·2012-05-30·CVSS 2.6
CVE-2012-2947 [LOW] CVE-2012-2947 CVE-2012-2948 asterisk various flaws [epel-6]
CVE-2012-2947 CVE-2012-2948 asterisk various flaws [epel-6]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=826474
ep
http://archives.neohapsis.com/archives/bugtraq/2012-05/0145.htmlhttp://downloads.asterisk.org/pub/security/AST-2012-008.htmlhttp://secunia.com/advisories/49303http://www.debian.org/security/2012/dsa-2493http://www.securityfocus.com/bid/53723http://www.securitytracker.com/id?1027103https://exchange.xforce.ibmcloud.com/vulnerabilities/75937http://archives.neohapsis.com/archives/bugtraq/2012-05/0145.htmlhttp://downloads.asterisk.org/pub/security/AST-2012-008.htmlhttp://secunia.com/advisories/49303http://www.debian.org/security/2012/dsa-2493http://www.securityfocus.com/bid/53723http://www.securitytracker.com/id?1027103https://exchange.xforce.ibmcloud.com/vulnerabilities/75937
2012-06-02
Published