CVE-2009-0041

NONECVSS 0.0

0.0

IAX2 in Asterisk Open Source 1.2.x before 1.2.31, 1.4.x before 1.4.23-rc4, and 1.6.x before 1.6.0.3-rc2; Business Edition A.x.x, B.x.x before B.2.5.7, C.1.x.x before C.1.10.4, and C.2.x.x before C.2.1.2.1; and s800i 1.2.x before 1.3.0 responds differently to a failed login attempt depending on whether the user account exists, which allows remote attackers to enumerate valid usernames.

🔗 References (22)

cve@mitrehttp://downloads.digium.com/pub/security/AST-2009-001.html
cve@mitrehttp://secunia.com/advisories/33453
cve@mitrehttp://secunia.com/advisories/34982
cve@mitrehttp://secunia.com/advisories/37677
cve@mitrehttp://security.gentoo.org/glsa/glsa-200905-01.xml
cve@mitrehttp://securityreason.com/securityalert/4910
cve@mitrehttp://www.debian.org/security/2009/dsa-1952
cve@mitrehttp://www.securityfocus.com/archive/1/499884/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/33174
cve@mitrehttp://www.securitytracker.com/id?1021549
cve@mitrehttp://www.vupen.com/english/advisories/2009/0063
af854a3a-2127-422b-91ae-364da2661108http://downloads.digium.com/pub/security/AST-2009-001.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/33453
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/34982
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/37677

Is Your Infrastructure Affected by CVE-2009-0041?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-0041

📅 Published

🔄 Last Modified

🔗 References (22)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-0041?