CVE-2013-2686
published 2013-04-01CVE-2013-2686: main/http.c in the HTTP server in Asterisk Open Source 1.8.x before 1.8.20.2, 10.x before 10.12.2, and 11.x before 11.2.2; Certified Asterisk 1.8.15 before…
PriorityP425medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
2.13%
79.6th percentile
main/http.c in the HTTP server in Asterisk Open Source 1.8.x before 1.8.20.2, 10.x before 10.12.2, and 11.x before 11.2.2; Certified Asterisk 1.8.15 before 1.8.15-cert2; and Asterisk Digiumphones 10.x-digiumphones before 10.12.2-digiumphones does not properly restrict Content-Length values, which allows remote attackers to conduct stack-consumption attacks and cause a denial of service (daemon crash) via a crafted HTTP POST request. NOTE: this vulnerability exists because of an incorrect fix for CVE-2012-5976.
Affected
107 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| asterisk | certified_asterisk | — | — |
| asterisk | certified_asterisk | — | — |
| asterisk | certified_asterisk | >= 0 < 1:1.8.13.1~dfsg-2 | 1:1.8.13.1~dfsg-2 |
| asterisk | digiumphones | — | — |
| asterisk | digiumphones | — | — |
| asterisk | digiumphones | — | — |
| asterisk | digiumphones | — | — |
| asterisk | digiumphones | — | — |
| asterisk | digiumphones | — | — |
| asterisk | digiumphones | — | — |
| asterisk | digiumphones | — | — |
| asterisk | digiumphones | — | — |
| asterisk | digiumphones | — | — |
| asterisk | digiumphones | — | — |
| asterisk | digiumphones | — | — |
| asterisk | digiumphones | — | — |
| asterisk | digiumphones | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_debian5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-32mc-px3q-67r4: main/http
ghsa_unreviewed·2022-05-17·CVSS 5.0
CVE-2013-2686 [MEDIUM] CWE-119 GHSA-32mc-px3q-67r4: main/http
main/http.c in the HTTP server in Asterisk Open Source 1.8.x before 1.8.20.2, 10.x before 10.12.2, and 11.x before 11.2.2; Certified Asterisk 1.8.15 before 1.8.15-cert2; and Asterisk Digiumphones 10.x-digiumphones before 10.12.2-digiumphones does not properly restrict Content-Length values, which allows remote attackers to conduct stack-consumption attacks and cause a denial of service (daemon crash) via a crafted HTTP POST request. NOTE: this vulnerability exists because of an incorrect fix for CVE-2012-5976.
OSV
CVE-2013-2686: main/http
osv·2013-04-01·CVSS 5.0
CVE-2013-2686 [MEDIUM] CVE-2013-2686: main/http
main/http.c in the HTTP server in Asterisk Open Source 1.8.x before 1.8.20.2, 10.x before 10.12.2, and 11.x before 11.2.2; Certified Asterisk 1.8.15 before 1.8.15-cert2; and Asterisk Digiumphones 10.x-digiumphones before 10.12.2-digiumphones does not properly restrict Content-Length values, which allows remote attackers to conduct stack-consumption attacks and cause a denial of service (daemon crash) via a crafted HTTP POST request. NOTE: this vulnerability exists because of an incorrect fix for CVE-2012-5976.
Debian
CVE-2013-2686: asterisk - main/http.c in the HTTP server in Asterisk Open Source 1.8.x before 1.8.20.2, 10...
vendor_debian·2013·CVSS 5.0
CVE-2013-2686 [MEDIUM] CVE-2013-2686: asterisk - main/http.c in the HTTP server in Asterisk Open Source 1.8.x before 1.8.20.2, 10...
main/http.c in the HTTP server in Asterisk Open Source 1.8.x before 1.8.20.2, 10.x before 10.12.2, and 11.x before 11.2.2; Certified Asterisk 1.8.15 before 1.8.15-cert2; and Asterisk Digiumphones 10.x-digiumphones before 10.12.2-digiumphones does not properly restrict Content-Length values, which allows remote attackers to conduct stack-consumption attacks and cause a denial of service (daemon crash) via a crafted HTTP POST request. NOTE: this vulnerability exists because of an incorrect fix for CVE-2012-5976.
Scope: local
bullseye: resolved (fixed in 1:1.8.13.1~dfsg-2)
sid: resolved (fixed in 1:1.8.13.1~dfsg-2)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2013-2686 CVE-2013-2264 asterisk various flaws [epel-6]
bugzilla·2013-03-28·CVSS 5.0
CVE-2013-2686 [MEDIUM] CVE-2013-2686 CVE-2013-2264 asterisk various flaws [epel-6]
CVE-2013-2686 CVE-2013-2264 asterisk various flaws [epel-6]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
epel-6 tracking bug for asterisk: see bl
Bugzilla
CVE-2013-2686 CVE-2013-2264 asterisk various flaws [fedora-17]
bugzilla·2013-03-28·CVSS 5.0
CVE-2013-2686 [MEDIUM] CVE-2013-2686 CVE-2013-2264 asterisk various flaws [fedora-17]
CVE-2013-2686 CVE-2013-2264 asterisk various flaws [fedora-17]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
fedora-17 tracking bug for asterisk: see b
Bugzilla
CVE-2013-2686 asterisk: DoS in the HTTP server (AST-2013-002)
bugzilla·2013-03-28·CVSS 5.0
CVE-2013-2686 [MEDIUM] CVE-2013-2686 asterisk: DoS in the HTTP server (AST-2013-002)
CVE-2013-2686 asterisk: DoS in the HTTP server (AST-2013-002)
A denial of service flaw was found in the way Asterisk, an open-source telephony toolkit, performed processing of certain HTTP POST requests with very large Content-Length values. A remote attacker could use this flaw to cause asterisk telephony server to crash (denial of service).
Upstream advisory:
[1] http://downloads.asterisk.org/pub/security/AST-2013-002.html
Relevant upstream patches:
[2] http://downloads.asterisk.org/pub/security/AST-2013-002-1.8.diff
[3] http://downloads.asterisk.org/pub/security/AST-2013-002-10.diff
[4] http://downloads.asterisk.org/pub/security/AST-2013-002-11.diff
Discussion:
This issue affects the versions of the asterisk package, as shipped with Fedora release of 18, 17, and Fedora EPEL-6. Plea
Bugzilla
CVE-2013-2685 CVE-2013-2686 CVE-2013-2264 asterisk: various flaws [fedora-18]
bugzilla·2013-03-27·CVSS 5.0
CVE-2013-2685 [MEDIUM] CVE-2013-2685 CVE-2013-2686 CVE-2013-2264 asterisk: various flaws [fedora-18]
CVE-2013-2685 CVE-2013-2686 CVE-2013-2264 asterisk: various flaws [fedora-18]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
fedora-18 tracking bug for
http://downloads.asterisk.org/pub/security/AST-2013-002.htmlhttp://telussecuritylabs.com/threats/show/TSL20130327-01https://issues.asterisk.org/jira/browse/ASTERISK-20967http://downloads.asterisk.org/pub/security/AST-2013-002.htmlhttp://telussecuritylabs.com/threats/show/TSL20130327-01https://issues.asterisk.org/jira/browse/ASTERISK-20967
2013-04-01
Published