fkie_cve-2011-2666
Vulnerability from fkie_nvd
Published
2011-07-06 19:55
Modified
2024-11-21 01:28
Severity ?
Summary
The default configuration of the SIP channel driver in Asterisk Open Source 1.4.x through 1.4.41.2 and 1.6.2.x through 1.6.2.18.2 does not enable the alwaysauthreject option, which allows remote attackers to enumerate account names by making a series of invalid SIP requests and observing the differences in the responses for different usernames, a different vulnerability than CVE-2011-2536.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "1F8B700A-FACB-4BC8-9DF2-972DC63D852B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.0:rc2:*:*:*:*:*:*",
"matchCriteriaId": "FFD31B9B-2F43-4637-BE56-47A807384BF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.0:rc3:*:*:*:*:*:*",
"matchCriteriaId": "E6450D6B-C907-49E6-9788-E4029C09285F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.0:rc4:*:*:*:*:*:*",
"matchCriteriaId": "DDB0432E-024A-4C0C-87FF-448E513D2834",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.0:rc5:*:*:*:*:*:*",
"matchCriteriaId": "D6A6A343-FEA2-49E5-9858-455AE3B29470",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.0:rc6:*:*:*:*:*:*",
"matchCriteriaId": "D57B94E3-EA37-466C-ADC4-5180D4502FDD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.0:rc7:*:*:*:*:*:*",
"matchCriteriaId": "64D35A89-6B21-4770-AA0F-424C5C91A254",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.0:rc8:*:*:*:*:*:*",
"matchCriteriaId": "14817302-A34A-4980-B148-AEB4B3B49BE3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "61FDFA96-E62A-413B-9846-F51F1F7349EC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.1:rc1:*:*:*:*:*:*",
"matchCriteriaId": "DA924386-49F6-4371-B975-B1473EEA12F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "B74A1B99-8901-4690-B994-1DAD3EFA5ABB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.3:rc2:*:*:*:*:*:*",
"matchCriteriaId": "4253C7DD-3588-4B35-B96D-C027133BE93F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.4:*:*:*:*:*:*:*",
"matchCriteriaId": "24AE11DB-16D3-42BF-BC64-E8982107D35B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.5:*:*:*:*:*:*:*",
"matchCriteriaId": "53841D77-926C-4362-BC85-BD8B6AC4391D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.6:*:*:*:*:*:*:*",
"matchCriteriaId": "F98FD6E6-EDE9-437D-B7C2-2DB65B73D230",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.6:rc1:*:*:*:*:*:*",
"matchCriteriaId": "4BA6CA77-D358-4623-8400-78EFC47ADB7C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.6:rc2:*:*:*:*:*:*",
"matchCriteriaId": "B4E62DAB-45E0-4EAA-8E45-6D3757A679D5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.15:rc1:*:*:*:*:*:*",
"matchCriteriaId": "1355578C-B384-401A-9123-2789CBECAD0B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.16:*:*:*:*:*:*:*",
"matchCriteriaId": "3491F8DB-A162-4608-B5F9-5401FE058CEB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.16:rc1:*:*:*:*:*:*",
"matchCriteriaId": "C52730A8-D96E-46C1-8905-1D78A93E9C84",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.16.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C6E5CD17-B14A-4BDB-BA75-261344FF6F25",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.16.2:*:*:*:*:*:*:*",
"matchCriteriaId": "63C8DBF5-6992-4618-BD2D-56F1F98EAE3C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.17:*:*:*:*:*:*:*",
"matchCriteriaId": "EEED6C07-CFB7-44DC-9A41-9B6271942123",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.17:rc1:*:*:*:*:*:*",
"matchCriteriaId": "0864DAF9-B7FA-4018-99F4-F2A7AA6FBBB0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.17:rc2:*:*:*:*:*:*",
"matchCriteriaId": "694B257B-E73B-4534-B316-87284FA45534",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.17:rc3:*:*:*:*:*:*",
"matchCriteriaId": "418FD91F-014E-4529-8D72-D3FB27788EEA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.17.1:*:*:*:*:*:*:*",
"matchCriteriaId": "D213EC93-0D4F-4BD9-9F13-9A9E705135EB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.17.2:*:*:*:*:*:*:*",
"matchCriteriaId": "2E9D2091-B292-4D6E-A91F-58D24BD5A5E3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.17.3:*:*:*:*:*:*:*",
"matchCriteriaId": "CFF196A0-87E1-4DD2-8CDA-B19EB6F71312",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.18:*:*:*:*:*:*:*",
"matchCriteriaId": "6F59B7C5-8EF3-495E-9A91-9C96E6DF41E4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.18:rc1:*:*:*:*:*:*",
"matchCriteriaId": "D9020FF4-645B-4E98-8CB0-3F8DF7C5841B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.18.1:*:*:*:*:*:*:*",
"matchCriteriaId": "9FA6B65B-1D93-4028-BD85-8879D310B896",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.6.2.18.2:*:*:*:*:*:*:*",
"matchCriteriaId": "79A46D43-FE29-4665-8052-284BC9C70D9E",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "6E56DB29-571D-4615-B347-38CF4590E463",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.0:beta1:*:*:*:*:*:*",
"matchCriteriaId": "FC1188DA-6C27-48D2-9CE7-74D77B24EE9E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.0:beta2:*:*:*:*:*:*",
"matchCriteriaId": "A93B8F91-5C56-44DE-AE29-8468E853759F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.0:beta3:*:*:*:*:*:*",
"matchCriteriaId": "BF7F4D02-7C8E-403C-A53E-A5F8C07F33A7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.0:beta4:*:*:*:*:*:*",
"matchCriteriaId": "D85031A3-3444-4650-905D-721F1EBAA24F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "6F0AC2B3-6E8A-4B26-8A6C-792D9E5072C7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.2:*:*:*:*:*:*:*",
"matchCriteriaId": "2BC8D6D4-A389-4A78-8DA8-351A9CB896E0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.3:*:*:*:*:*:*:*",
"matchCriteriaId": "5E979AC4-58EA-4297-9F90-350924BBE440",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.4:*:*:*:*:*:*:*",
"matchCriteriaId": "3A58CCD3-4A0C-468B-85F2-59A52B7293A4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.5:*:*:*:*:*:*:*",
"matchCriteriaId": "3542DB91-8487-49D6-AA15-E8FD9D6B99D6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.6:*:*:*:*:*:*:*",
"matchCriteriaId": "6BA4F3F1-C3F1-4E15-A854-9BB84E33E4AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.7:*:*:*:*:*:*:*",
"matchCriteriaId": "661D710E-79F0-4E98-B35B-ED0549D35C24",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "68291ADE-F9D1-427B-B150-FDA7F2F4788B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.8:*:*:*:*:*:*:*",
"matchCriteriaId": "7F80CBCB-F58D-4BE7-8E78-67E04C900D01",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.9:*:*:*:*:*:*:*",
"matchCriteriaId": "EB61D32E-3400-480E-BD27-BA3F98F94427",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.10:*:*:*:*:*:*:*",
"matchCriteriaId": "D9154EDB-CAE6-4BB0-8D02-9EC2B81D93C9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.10.1:*:*:*:*:*:*:*",
"matchCriteriaId": "A432B0A7-F158-4B9C-97F6-6A29DB13EAFA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.11:*:*:*:*:*:*:*",
"matchCriteriaId": "687C67CB-46AF-40C2-8A02-081C7F78568A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.12:*:*:*:*:*:*:*",
"matchCriteriaId": "6E8D6EC0-A61E-4DBC-A0C7-864E9C4BDA1A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.12.1:*:*:*:*:*:*:*",
"matchCriteriaId": "2EF7F65A-45FD-4586-901E-49B057100BB4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.13:*:*:*:*:*:*:*",
"matchCriteriaId": "300F158E-ED27-46C8-85E4-AA0AA6B201DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.14:*:*:*:*:*:*:*",
"matchCriteriaId": "FB6F04C0-3226-4D2C-97A3-39999483C62C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.15:*:*:*:*:*:*:*",
"matchCriteriaId": "30685A20-963A-48D4-B7D7-2C11C2C812AA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.16:*:*:*:*:*:*:*",
"matchCriteriaId": "C54C3AAC-4D5D-4661-86AB-6849982E8C67",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.16.1:*:*:*:*:*:*:*",
"matchCriteriaId": "6F847916-89F1-4AA6-973D-6002C8B54EE8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.16.2:*:*:*:*:*:*:*",
"matchCriteriaId": "5359815E-671A-4DFD-9E99-8CF903A03C84",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.17:*:*:*:*:*:*:*",
"matchCriteriaId": "E2EFBC9E-4DCA-43CB-93EB-6807E2383A98",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.18:*:*:*:*:*:*:*",
"matchCriteriaId": "98755B1B-CAD5-4AC5-8571-52E67C3A8274",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.19:*:*:*:*:*:*:*",
"matchCriteriaId": "C9D8C8FE-3D09-4F60-AD03-9D4439942141",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.19:rc1:*:*:*:*:*:*",
"matchCriteriaId": "902FBE4B-5237-43CD-8EB6-D2CAC0F30879",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.19:rc2:*:*:*:*:*:*",
"matchCriteriaId": "708DCACA-49EC-468D-81EC-CE5367F8A164",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.19:rc3:*:*:*:*:*:*",
"matchCriteriaId": "BA9E3314-7D23-414C-8187-16D807410B62",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.19:rc4:*:*:*:*:*:*",
"matchCriteriaId": "D824ED7B-BAB6-4C0F-A6B0-A75AB072EC0F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.19.1:*:*:*:*:*:*:*",
"matchCriteriaId": "7A01CE63-F834-48B2-826D-2DAD1B4AE8C3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.19.2:*:*:*:*:*:*:*",
"matchCriteriaId": "88B9CC9D-3DC2-4674-BA52-4C6D4E2056C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.20:*:*:*:*:*:*:*",
"matchCriteriaId": "43F1849F-1230-45E7-B6A3-D6FC72EB0F11",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.20:rc1:*:*:*:*:*:*",
"matchCriteriaId": "873C9C7E-93A3-4269-B19C-AB33A21C1AC7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.20:rc2:*:*:*:*:*:*",
"matchCriteriaId": "457F2112-7C5E-4953-8F4C-117925D486DA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.20:rc3:*:*:*:*:*:*",
"matchCriteriaId": "BD15ADD6-D7FA-441A-A9BC-487BCC15F2A0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.20.1:*:*:*:*:*:*:*",
"matchCriteriaId": "792A8901-B7B8-40E8-9258-6338B72770FD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.21:*:*:*:*:*:*:*",
"matchCriteriaId": "0E6C8F78-0C00-45A5-8FEB-2A4BD5AC1A37",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.21:rc1:*:*:*:*:*:*",
"matchCriteriaId": "F3E04247-C4EF-4C1B-B879-5C02986950D3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.21:rc2:*:*:*:*:*:*",
"matchCriteriaId": "5E382FC8-4001-4058-9151-05AE98B4A35E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.21.1:*:*:*:*:*:*:*",
"matchCriteriaId": "11FECE6B-B6A6-4DDA-9019-9A10B05EC1F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.21.2:*:*:*:*:*:*:*",
"matchCriteriaId": "D9813D27-0688-4989-99EB-1DC0F82D59F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.22:*:*:*:*:*:*:*",
"matchCriteriaId": "D4333904-9D21-4149-965F-F49F0A34BD85",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.22:rc1:*:*:*:*:*:*",
"matchCriteriaId": "F7180626-F0FD-46F3-AD52-5C67525C4B46",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.22:rc2:*:*:*:*:*:*",
"matchCriteriaId": "85A1E3A3-C157-4F3D-9477-F63771E7F627",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.22:rc3:*:*:*:*:*:*",
"matchCriteriaId": "FEE739CC-7A9C-489E-BFC0-6257129C043D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.22:rc4:*:*:*:*:*:*",
"matchCriteriaId": "ADC0E947-A95A-44ED-8DED-CC769FF00569",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.22:rc5:*:*:*:*:*:*",
"matchCriteriaId": "DE52BD9F-3728-455C-BC45-1A4DB926FFE9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.22.1:*:*:*:*:*:*:*",
"matchCriteriaId": "1EF82D41-9222-42D3-ADAD-94B4F950C63F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.22.2:*:*:*:*:*:*:*",
"matchCriteriaId": "2AE9F181-A8E4-4700-A30F-211CDE251606",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.23:*:*:*:*:*:*:*",
"matchCriteriaId": "5B10AE4B-EC2D-4D5B-B842-50F5097A0650",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.23:rc1:*:*:*:*:*:*",
"matchCriteriaId": "83E854D0-17A2-473B-B7E8-41E6447C81DC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.23:rc2:*:*:*:*:*:*",
"matchCriteriaId": "47169133-3854-4D8F-B79E-3CC77A166EF0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.23:rc3:*:*:*:*:*:*",
"matchCriteriaId": "6071601F-CF37-4E66-9D6D-AFC3434C18AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.23:rc4:*:*:*:*:*:*",
"matchCriteriaId": "2A575824-E005-4820-824A-4875594619E4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.23.1:*:*:*:*:*:*:*",
"matchCriteriaId": "080C7089-5662-4A94-9842-C4A26095DA4B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.23.2:*:*:*:*:*:*:*",
"matchCriteriaId": "7AE38697-0B16-4032-9234-CA263E4A9885",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.24:*:*:*:*:*:*:*",
"matchCriteriaId": "DCB18BE2-B073-429C-ABE7-B8305793DAE4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.24:rc1:*:*:*:*:*:*",
"matchCriteriaId": "FA7216BA-A42F-4ED8-8086-B4FA483FDAB6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.24.1:*:*:*:*:*:*:*",
"matchCriteriaId": "CB7D2048-CD61-46C0-830B-11976B275783",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.25:*:*:*:*:*:*:*",
"matchCriteriaId": "8DBA63FE-62AF-4F3D-B30C-550D17C4E35F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.25:rc1:*:*:*:*:*:*",
"matchCriteriaId": "AD0A0F19-020D-4578-9023-12B0CB646D9C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.25.1:*:*:*:*:*:*:*",
"matchCriteriaId": "96D5A1E3-FF0B-4C71-AA51-655D7106880D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.26:*:*:*:*:*:*:*",
"matchCriteriaId": "E5D425E6-E2E5-4452-9EAA-2697C1155784",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.26:rc1:*:*:*:*:*:*",
"matchCriteriaId": "9855FA26-0930-4AC9-A920-B394F6916349",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.26:rc2:*:*:*:*:*:*",
"matchCriteriaId": "BBA21246-7DF4-41BC-998A-05D38FC97C8F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.26:rc3:*:*:*:*:*:*",
"matchCriteriaId": "EE9A7984-22C9-4296-8E44-C010E67F193D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.26:rc4:*:*:*:*:*:*",
"matchCriteriaId": "51B2C42A-C252-4BD8-A908-8F30C2BF15E7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.26:rc5:*:*:*:*:*:*",
"matchCriteriaId": "2137CEAD-0F19-43C5-A26D-1972564FCD8C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.26:rc6:*:*:*:*:*:*",
"matchCriteriaId": "B7552466-B782-4F16-8561-A2A51E94FED4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.26.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C2F8C82D-3031-4C62-89FA-3BF56EA29727",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.26.2:*:*:*:*:*:*:*",
"matchCriteriaId": "B3074CEA-46BD-4CAD-BF5C-10008A80E434",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.26.3:*:*:*:*:*:*:*",
"matchCriteriaId": "E6AB8988-FCC6-407A-A7D9-2F7A3A7488B1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.27:*:*:*:*:*:*:*",
"matchCriteriaId": "E06848DE-6EE1-4FD0-A14F-39D41B2F3E75",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.27:rc1:*:*:*:*:*:*",
"matchCriteriaId": "CF342950-FDD7-41A9-94D5-EDF41130B61E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.27:rc2:*:*:*:*:*:*",
"matchCriteriaId": "6E4543AA-3D54-4444-AD1F-381A87A89DA2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.27:rc3:*:*:*:*:*:*",
"matchCriteriaId": "AF3036DD-261C-4975-A01E-92CD29479588",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.27:rc4:*:*:*:*:*:*",
"matchCriteriaId": "EF07C116-27DC-4875-9DCF-049E2A8EAEA4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.27:rc5:*:*:*:*:*:*",
"matchCriteriaId": "88FBC328-538A-4484-A342-1688D9669B9F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.27.1:*:*:*:*:*:*:*",
"matchCriteriaId": "CBF2301E-F6EF-4D28-82EE-FA1AB8CA9E43",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.28:*:*:*:*:*:*:*",
"matchCriteriaId": "A53F637C-846A-43FC-BA71-C8571648FA46",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.28:rc1:*:*:*:*:*:*",
"matchCriteriaId": "E61070F4-1B6B-4814-918E-459DE5119A24",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.29:*:*:*:*:*:*:*",
"matchCriteriaId": "70664E0F-09CF-42C2-A7A7-E635D022E90D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.29:rc1:*:*:*:*:*:*",
"matchCriteriaId": "D1E13E1A-C2D4-4E5A-84C8-E6AF061D67C8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.29.1:*:*:*:*:*:*:*",
"matchCriteriaId": "7E811134-B657-4C50-9AEF-A7F68CA5577A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.30:*:*:*:*:*:*:*",
"matchCriteriaId": "4C4CD101-F079-4940-AA79-886B69A7A514",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.30:rc2:*:*:*:*:*:*",
"matchCriteriaId": "B7B828E9-5BE3-4E6F-8048-F2B1F2E929CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.30:rc3:*:*:*:*:*:*",
"matchCriteriaId": "75BB2066-74A6-4F89-B54C-35F234DC1F03",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.31:*:*:*:*:*:*:*",
"matchCriteriaId": "FE522334-BF53-4E34-949B-CD928B59A341",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.31:rc1:*:*:*:*:*:*",
"matchCriteriaId": "648DEC0E-3CBC-4EA2-AF27-2C518B0762CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.31:rc2:*:*:*:*:*:*",
"matchCriteriaId": "B50F4BAE-D00D-4352-B52B-BE1A9FFB6949",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.32:*:*:*:*:*:*:*",
"matchCriteriaId": "E7A35508-8235-4915-8810-12B2630C82C8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.32:rc1:*:*:*:*:*:*",
"matchCriteriaId": "63DD4EE5-6F56-41C7-9CB4-16ADF4F63B8F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.33:*:*:*:*:*:*:*",
"matchCriteriaId": "2347E451-2F89-4EA6-A6E0-22BCB0C8A56E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.33:rc1:*:*:*:*:*:*",
"matchCriteriaId": "A86F5360-6FE4-4EA2-9208-076E78C842A6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.33:rc2:*:*:*:*:*:*",
"matchCriteriaId": "3CDFA85B-17A4-4ECC-9922-F5546917B4C0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.33.1:*:*:*:*:*:*:*",
"matchCriteriaId": "3D7D7DB7-32A7-490E-AED2-C404D371E7C2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.34:*:*:*:*:*:*:*",
"matchCriteriaId": "A03632BC-CA0F-42BD-8839-A72DB146A4A6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.34:rc1:*:*:*:*:*:*",
"matchCriteriaId": "9DC4EF64-6A1D-47CB-AC07-48CABB612DCE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.34:rc2:*:*:*:*:*:*",
"matchCriteriaId": "68C00FEF-7850-48F4-8122-4211D080B508",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.35:*:*:*:*:*:*:*",
"matchCriteriaId": "D3A48F07-42E1-47E9-94EA-44D20A0BAC3F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.35:rc1:*:*:*:*:*:*",
"matchCriteriaId": "87D16470-5892-4289-BB35-B69100BCA31E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.36:*:*:*:*:*:*:*",
"matchCriteriaId": "15E71BD7-83D1-4E2B-AD40-BB6B53056C89",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.36:rc1:*:*:*:*:*:*",
"matchCriteriaId": "87FDE2E2-5F08-43EF-BBD8-7DCCC0C98870",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.37:*:*:*:*:*:*:*",
"matchCriteriaId": "347E9D8C-A372-41F2-AB48-FFCAB454C9C8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.37:rc1:*:*:*:*:*:*",
"matchCriteriaId": "74F67E57-1DD0-4850-8D7E-7A9748BD106C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.38:*:*:*:*:*:*:*",
"matchCriteriaId": "B208C056-B567-4BEE-A9B7-AEB394341D5D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.38:rc1:*:*:*:*:*:*",
"matchCriteriaId": "A0C3A2D4-07A9-4D28-AC18-03523E9FF34A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.39:*:*:*:*:*:*:*",
"matchCriteriaId": "E6516E0F-9F60-4D20-88D3-B9CD8DC93062",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.39:rc1:*:*:*:*:*:*",
"matchCriteriaId": "22147B91-45A4-4834-AC8D-2DC17A706BEF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.39.1:*:*:*:*:*:*:*",
"matchCriteriaId": "677C10DE-46D8-4EF1-BF22-63F3AE37CBC2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.39.2:*:*:*:*:*:*:*",
"matchCriteriaId": "E299CE20-B02D-4519-AC46-BB64B1E3826A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.40:*:*:*:*:*:*:*",
"matchCriteriaId": "22FD16C3-7518-4208-8C0A-043C13C14A72",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.40:rc1:*:*:*:*:*:*",
"matchCriteriaId": "2461B6B9-2C93-4D84-A1EE-C07AD32A9540",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.40:rc2:*:*:*:*:*:*",
"matchCriteriaId": "C8A4CE2D-FBAB-4C35-846A-5B95BBCAD6BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.40:rc3:*:*:*:*:*:*",
"matchCriteriaId": "30FFB6F4-1BC7-4D4C-9C65-A66CF514E321",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.40.1:*:*:*:*:*:*:*",
"matchCriteriaId": "F745AF0A-D6A6-4429-BBBE-347BF41999BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.40.2:*:*:*:*:*:*:*",
"matchCriteriaId": "DC44F61B-AB96-4643-899B-19B9E3B4F05C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.41:*:*:*:*:*:*:*",
"matchCriteriaId": "F788A255-CF21-424F-9F30-8A744CC16740",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.41:rc1:*:*:*:*:*:*",
"matchCriteriaId": "92B8AA8E-D49B-4AD7-8AFC-BD4F9E9C7A16",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.41.1:*:*:*:*:*:*:*",
"matchCriteriaId": "0606F179-8817-4124-B92B-CD868B216320",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:digium:asterisk:1.4.41.2:*:*:*:*:*:*:*",
"matchCriteriaId": "E93609A6-7FFD-4179-86E9-0D1292B035B8",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The default configuration of the SIP channel driver in Asterisk Open Source 1.4.x through 1.4.41.2 and 1.6.2.x through 1.6.2.18.2 does not enable the alwaysauthreject option, which allows remote attackers to enumerate account names by making a series of invalid SIP requests and observing the differences in the responses for different usernames, a different vulnerability than CVE-2011-2536."
},
{
"lang": "es",
"value": "La configuraci\u00f3n por defecto del controlador del canal SIP en Asterisk Open Source 1.4.x hasta 1.1.41.2 y 1.6.2.x hasta 1.6.2.18.2 no activa la opci\u00f3n alwaysauthreject, lo que permite a atacantes remotos enumerar los nombres de las cuentas al hacer una serie de peticiones SIP inv\u00e1lidas y observando las diferencias en las respuestas para distintos nombres de usuario, es una vulnerabilidad distinta a CVE-2011-2536."
}
],
"id": "CVE-2011-2666",
"lastModified": "2024-11-21T01:28:43.267",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2011-07-06T19:55:03.637",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "http://downloads.asterisk.org/pub/security/AST-2011-011.html"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68472"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://downloads.asterisk.org/pub/security/AST-2011-011.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68472"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-16"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.