PublicDate: 2008-07-22 23:41:00 UTC
Candidate: CVE-2008-3263
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3263
Description:
 The IAX2 protocol implementation in Asterisk Open Source 1.0.x, 1.2.x
 before 1.2.30, and 1.4.x before 1.4.21.2; Business Edition A.x.x, B.x.x
 before B.2.5.4, and C.x.x before C.1.10.3; AsteriskNOW; Appliance Developer
 Kit 0.x.x; and s800i 1.0.x before 1.2.0.1 allows remote attackers to cause
 a denial of service (call-number exhaustion and CPU consumption) by quickly
 sending a large number of IAX2 (IAX) POKE requests.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_asterisk:
upstream_asterisk: released (1.4.21.2)
dapper_asterisk: ignored (reached end-of-life)
feisty_asterisk: needed (reached end-of-life)
gutsy_asterisk: needed (reached end-of-life)
hardy_asterisk: released (1:1.4.17~dfsg-2ubuntu1.1)
intrepid_asterisk: needed (reached end-of-life)
jaunty_asterisk: not-affected (1.4.21.2~dfsg-3ubuntu2)
karmic_asterisk: not-affected (1:1.6.2.0~dfsg~beta4-0ubuntu2)
devel_asterisk: not-affected (1:1.6.2.0~dfsg~beta4-0ubuntu2)