Vulnerabilities

CVE-2006-1827

by Fred · 18/04/2006

Integer signedness error in format_jpeg.c in Asterisk 1.2.6 and earlier allows remote attackers to execute arbitrary code via a length value that passes a length check as a negative number, but triggers a buffer overflow when it is used as an unsigned length.

Date published : 2006-04-18

http://www.securityfocus.com/bid/17561

http://ftp.digium.com/pub/asterisk/releases/asterisk-1.2.7-patch.gz

Similar

Tags: Cybersecurity Alert