Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5744

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2008-5744
Last Modified 14 May 2009 01:32:29
Published 26 Dec 2008 04:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-5744

Summary

Array index error in the dahdi/tor2.c driver in Zaptel (aka DAHDI) 1.4.11 and earlier allows local users in the dialout group to overwrite an integer value in kernel memory by writing to /dev/zap/ctl, related to an incorrect tor2 patch for CVE-2008-5396 that uses the wrong variable in a range check against the value of lc->sync.

Vulnerable Systems

Application

  • Asterisk Zaptel 1.2

  • Asterisk Zaptel 1.2.27

  • Asterisk Zaptel 1.4

  • Asterisk Zaptel 1.4.11


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=475446#c4

XF - zaptel-tor2-memory-overwrite(47666)

MLIST - [oss-security] 20081219 CVE Request - Incomplete dahdi/zaptel tor2.c patch for CVE-2008-5396

CONFIRM - http://svn.digium.com/view/dahdi?view=rev&revision=5590

SECUNIA - 32960

CONFIRM - http://bugs.digium.com/view.php?id=13954#96700


Last Updated: 27 May 2016 10:48:54