Security Advisories

Published security advisories covering vulnerabilities in VoIP, WebRTC, and telecommunications software by Enable Security.

security advisories

Feb 22, 2018

Asterisk PJSIP: stack corruption via large Accept header in SUBSCRIBE High 7.5

CVE-2018-7284 asterisk pjsip stack corruption denial of service

Feb 22, 2018

Asterisk PJSIP: crash via repeated INVITE messages over TCP/TLS Medium 6.5

CVE-2018-7286 asterisk pjsip denial of service

Feb 22, 2018

Asterisk PJSIP: crash via invalid SDP media format description High 7.5

CVE-2018-1000098 asterisk pjsip denial of service

Sep 1, 2017

Asterisk: RTP Bleed vulnerability High 7.5

CVE-2017-14099 asterisk owasp

May 23, 2017

Asterisk Skinny: memory exhaustion denial of service

asterisk denial of service

May 23, 2017

Asterisk PJSIP: out-of-bound memory access in multipart parser

asterisk pjsip denial of service

May 23, 2017

Asterisk PJSIP: heap overflow in CSeq header parsing High 7.5

CVE-2017-9372 asterisk pjsip heap overflow

Jan 1, 2016

Liferay: XML External Entity vulnerability in OpenID component

Sep 12, 2013

Juniper VPN SSL: client-side cross-site scripting

CVE-2013-5649 juniper cross-site scripting

Jun 1, 2010

Applicure dotDefender: stored cross-site scripting in admin interface

dotdefender cross-site scripting