FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2006-1827

This CVE name corresponds to:

Entered Topic
2006-04-25 asterisk -- denial of service vulnerability, local system access

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2006-1827 at cve.mitre.org

Details

Type Candidate
Name CVE-2006-1827
Phase Assigned(20060418)

Description

Integer signedness error in format_jpeg.c in Asterisk 1.2.6 and earlier allows remote attackers to execute arbitrary code via a length value that passes a length check as a negative number, but triggers a buffer overflow when it is used as an unsigned length.

References

Source Reference
MISC http://www.cipher.org.uk/index.php?p=advisories/Asterisk_Codec_Integer_Overflow_07-04-2006.advisory
CONFIRM http://ftp.digium.com/pub/asterisk/releases/asterisk-1.2.7-patch.gz
DEBIAN DSA-1048
SUSE SUSE-SR:2006:009
BID 17561
VUPEN ADV-2006-1478
SECUNIA 19800
SECUNIA 19872
SECUNIA 19897

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.