CVE-2007-2294 (retired)

Priority
Description
The Manager Interface in Asterisk before 1.2.18 and 1.4.x before 1.4.3
allows remote attackers to cause a denial of service (crash) by using MD5
authentication to authenticate a user that does not have a password defined
in manager.conf, resulting in a NULL pointer dereference.
Package
Upstream:released (1.4.3)
More Information

Updated: 2019-09-19 15:08:06 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)