CVE-2007-3762 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2007-3762 Interim 1 5 2023-12-09T02:13:52Z current 2021-05-30T12:39:33Z 2023-12-09T02:13:52Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2007-3762 Stack-based buffer overflow in the IAX2 channel driver (chan_iax2) in Asterisk before 1.2.22 and 1.4.x before 1.4.8, Business Edition before B.2.2.1, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote attackers to execute arbitrary code by sending a long (1) voice or (2) video RTP frame. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PNBSHTSZCCBTDSYSF44PCYUCIMEDNFTL/#PNBSHTSZCCBTDSYSF44PCYUCIMEDNFTL E-Mail link for SUSE-SR:2007:015 https://www.suse.com/support/security/rating/ SUSE Security Ratings Stack-based buffer overflow in the IAX2 channel driver (chan_iax2) in Asterisk before 1.2.22 and 1.4.x before 1.4.8, Business Edition before B.2.2.1, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote attackers to execute arbitrary code by sending a long (1) voice or (2) video RTP frame. CVE-2007-3762 critical 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C