CVE-2006-4345

N/A Unknown

Published: August 24, 2006 Modified: April 16, 2026

Description

Stack-based buffer overflow in channels/chan_mgcp.c in MGCP in Asterisk 1.0 through 1.2.10 allows remote attackers to execute arbitrary code via a crafted audit endpoint (AUEP) response.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://ftp.digium.com/pub/asterisk/ChangeLog-1.2.11

Source: cve@mitre.org

http://labs.musecurity.com/advisories/MU-200608-01.txt

Source: cve@mitre.org

Patch Vendor Advisory

http://secunia.com/advisories/21600

Source: cve@mitre.org

Patch Vendor Advisory

http://secunia.com/advisories/22651

Source: cve@mitre.org

http://securitytracker.com/id?1016742

Source: cve@mitre.org

Patch

http://www.gentoo.org/security/en/glsa/glsa-200610-15.xml

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/444322/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/19683

Source: cve@mitre.org

Patch

http://www.sineapps.com/news.php?rssid=1448

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2006/3372

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/28542

Source: cve@mitre.org

http://ftp.digium.com/pub/asterisk/ChangeLog-1.2.11