GCVE - cpe:2.3:a:asterisk:asterisk_appliance_developer

Approved changes feed: RSS · Atom

cpe:2.3:a:asterisk:asterisk_appliance_developer_kit:1.4:*:*:*:*:*:*:*

part: a version: 1.4 update: *

Vendor	Asterisk (`8cf0208b-fb97-57c9-94a0-6da40e548dcd`)
Product	Asterisk Appliance Developer Kit (`5866186e-5909-5fab-9e57-149baabe4477`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2008-1390`	vulnerable	2026-06-03 14:28:40.599771	Details available The AsteriskGUI HTTP server in Asterisk Open Source 1.4.x before 1.4.19-rc3 and 1.6.x before 1.6.0-beta6, Business Edition C.x.x before C.1.6, AsteriskNOW before 1.0.2, Appliance Developer Kit before revision 104704, and s800i 1.0.x before 1.1.0.2 generates insufficiently random manager ID values, which makes it easier for remote attackers to hijack a manager session via a series of ID guesses. Published: 2008-03-24T17:00:00.000Z Updated: 2024-08-07T08:17:34.588Z Open on db.gcve.eu Reference links http://securityreason.com/securityalert/3764 http://www.securityfocus.com/bid/28316 http://www.securityfocus.com/archive/1/489819/100/0/threaded https://exchange.xforce.ibmcloud.com/vulnerabilities/41304 http://secunia.com/advisories/29449	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-1289`	vulnerable	2026-06-03 14:28:40.025489	Details available Multiple buffer overflows in Asterisk Open Source 1.4.x before 1.4.18.1 and 1.4.19-rc3, Open Source 1.6.x before 1.6.0-beta6, Business Edition C.x.x before C.1.6.1, AsteriskNOW 1.0.x before 1.0.2, Appliance Developer Kit before 1.4 revision 109386, and s800i 1.1.x before 1.1.0.2 allow remote attackers to (1) write a zero to an arbitrary memory location via a large RTP payload number, related to the ast_rtp_unset_m_type function in main/rtp.c; or (2) write certain integers to an arbitrary memory location via a large number of RTP payloads, related to the process_sdp function in channels/chan_sip.c. Published: 2008-03-24T17:00:00.000Z Updated: 2024-08-07T08:17:34.571Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/28308 http://securityreason.com/securityalert/3763 http://labs.musecurity.com/advisories/MU-200803-01.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/41305 http://securitytracker.com/id?1019628	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Asterisk Appliance Developer Kit

PURL mappings

Vulnerability references

Contribute