Vulnerability Details CVE-2012-3553
chan_skinny.c in the Skinny (aka SCCP) channel driver in Asterisk Open Source 10.x before 10.5.1 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by sending a Station Key Pad Button message and closing a connection in off-hook mode, a related issue to CVE-2012-2948.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 21.5%
CVSS Severity
CVSS v2 Score 4.0
References
Products affected by CVE-2012-3553
-
cpe:2.3:a:digium:asterisk:10.0.0
-
cpe:2.3:a:digium:asterisk:10.0.1
-
cpe:2.3:a:digium:asterisk:10.1.0
-
cpe:2.3:a:digium:asterisk:10.1.1
-
cpe:2.3:a:digium:asterisk:10.1.2
-
cpe:2.3:a:digium:asterisk:10.1.3
-
cpe:2.3:a:digium:asterisk:10.2.0
-
cpe:2.3:a:digium:asterisk:10.2.1
-
cpe:2.3:a:digium:asterisk:10.3.0
-
cpe:2.3:a:digium:asterisk:10.3.1
-
cpe:2.3:a:digium:asterisk:10.4.0
-
cpe:2.3:a:digium:asterisk:10.4.1
-
cpe:2.3:a:digium:asterisk:10.4.2
-
cpe:2.3:a:digium:asterisk:10.5.0