GCVE - cpe:2.3:a:asterisk:asterisk_business_edition:c.1.0-beta7:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:asterisk:asterisk_business_edition:c.1.0-beta7:*:*:*:*:*:*:*

part: a version: c.1.0-beta7 update: *

Vendor	Asterisk (`8cf0208b-fb97-57c9-94a0-6da40e548dcd`)
Product	Asterisk Business Edition (`51a12edd-5496-597f-8b86-bea9035b3525`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2008-3264`	vulnerable	2026-06-03 14:28:52.902374	Details available The FWDOWNL firmware-download implementation in Asterisk Open Source 1.0.x, 1.2.x before 1.2.30, and 1.4.x before 1.4.21.2; Business Edition A.x.x, B.x.x before B.2.5.4, and C.x.x before C.1.10.3; AsteriskNOW; Appliance Developer Kit 0.x.x; and s800i 1.0.x before 1.2.0.1 allows remote attackers to cause a denial of service (traffic amplification) via an IAX2 FWDOWNL request. Published: 2008-07-24T15:18:00.000Z Updated: 2024-08-07T09:28:41.869Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id?1020536 http://security.gentoo.org/glsa/glsa-200905-01.xml http://secunia.com/advisories/31194 http://www.vupen.com/english/advisories/2008/2168/references http://downloads.digium.com/pub/security/AST-2008-011.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-1923`	vulnerable	2026-06-03 14:28:42.601090	Details available The IAX2 channel driver (chan_iax2) in Asterisk 1.2 before revision 72630 and 1.4 before revision 65679, when configured to allow unauthenticated calls, sends "early audio" to an unverified source IP address of a NEW message, which allows remote attackers to cause a denial of service (traffic amplification) via a spoofed NEW message. Published: 2008-04-23T16:00:00.000Z Updated: 2024-08-07T08:41:00.169Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/42049 http://downloads.digium.com/pub/security/AST-2008-006.html http://bugs.digium.com/view.php?id=10078 http://www.altsci.com/concepts/page.php?s=asteri&p=1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-1390`	vulnerable	2026-06-03 14:28:40.602000	Details available The AsteriskGUI HTTP server in Asterisk Open Source 1.4.x before 1.4.19-rc3 and 1.6.x before 1.6.0-beta6, Business Edition C.x.x before C.1.6, AsteriskNOW before 1.0.2, Appliance Developer Kit before revision 104704, and s800i 1.0.x before 1.1.0.2 generates insufficiently random manager ID values, which makes it easier for remote attackers to hijack a manager session via a series of ID guesses. Published: 2008-03-24T17:00:00.000Z Updated: 2024-08-07T08:17:34.588Z Open on db.gcve.eu Reference links http://securityreason.com/securityalert/3764 http://www.securityfocus.com/bid/28316 http://www.securityfocus.com/archive/1/489819/100/0/threaded https://exchange.xforce.ibmcloud.com/vulnerabilities/41304 http://secunia.com/advisories/29449	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Asterisk Business Edition

PURL mappings

Vulnerability references

Contribute