Vulnerability CVE-2012-1184 - CERT Civis.Net

Vulnerability Name:

CVE-2012-1184 (CCN-74083)

Assigned:

2012-03-15

Published:

2012-03-15

Updated:

2017-08-29

Summary:

Stack-based buffer overflow in the ast_parse_digest function in main/utils.c in Asterisk 1.8.x before 1.8.10.1 and 10.x before 10.2.1 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string in an HTTP Digest Authentication header.

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:POC/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.9 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:POC/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2012-1184

Source: CONFIRM
Type: UNKNOWN
http://downloads.asterisk.org/pub/security/AST-2012-003-1.8.diff

Source: CCN
Type: AST-2012-003
Stack Buffer Overflow in HTTP Manager

Source: CONFIRM
Type: Vendor Advisory
http://downloads.asterisk.org/pub/security/AST-2012-003.pdf

Source: OSVDB
Type: UNKNOWN
80126

Source: CCN
Type: SA48417
Asterisk Denial of Service and Buffer Overflow Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
48417

Source: CONFIRM
Type: Vendor Advisory
http://www.asterisk.org/node/51797

Source: MLIST
Type: UNKNOWN
[oss-security] 20120316 CVE Request -- Asterisk: AST-2012-002 and AST-2012-003 flaws

Source: MLIST
Type: UNKNOWN
[oss-security] 20120316 Re: CVE Request -- Asterisk: AST-2012-002 and AST-2012-003 flaws

Source: CCN
Type: OSVDB ID: 80126
Asterisk main/utils.c ast_parse_digest() Function HTTP Digest Authentication String Parsing Remote Overflow

Source: CCN
Type: BID-52815
Asterisk 'ast_parse_digest()' Stack Buffer Overflow Vulnerability

Source: SECTRACK
Type: UNKNOWN
1026813

Source: XF
Type: UNKNOWN
asterisk-astparsedigest-bo(74083)

Source: XF
Type: UNKNOWN
asterisk-astparsedigest-bo(74083)

Source: CCN
Type: ASTERISK-19542
Security Vulnerability: remotely exploitable stack overflow in main/utils ast_parse_digest

Source: EXPLOIT-DB
Type: EXPLOIT
Offensive Security Exploit Database [03-15-2012]

Vulnerable Configuration:

Configuration 1:

cpe:/a:digium:asterisk:1.8.0:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:beta1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:beta2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:beta3:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:beta4:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:beta5:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:rc2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:rc3:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:rc4:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:rc5:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.1.1:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.1.2:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.2:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.2.1:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.2.2:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.2.3:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.2.4:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.3:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.3:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.3:rc2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.3:rc3:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.3.1:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.3.2:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.3.3:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.4:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.4:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.4:rc2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.4:rc3:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.4.1:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.4.2:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.4.3:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.4.4:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.5:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.5:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.5.0:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.6.0:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.6.0:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.6.0:rc2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.6.0:rc3:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.7.0:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.7.0:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.7.0:rc2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.7.1:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.8.0:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.8.0:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.8.0:rc2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.8.0:rc3:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.8.0:rc4:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.8.0:rc5:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.8.1:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.8.2:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.9.0:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.9.0:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.9.0:rc2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.9.0:rc3:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.9.1:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.9.2:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.9.3:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.10.0:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.10.0:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.10.0:rc2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.10.0:rc3:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.10.0:rc4:*:*:*:*:*:*

Configuration 2:

cpe:/a:digium:asterisk:10.0.0:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.0.0:beta1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.0.0:beta2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.0.0:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.0.0:rc2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.0.0:rc3:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.0.1:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.1.0:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.1.0:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.1.0:rc2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.1.1:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.1.2:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.1.3:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.2.0:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.2.0:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.2.0:rc2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.2.0:rc3:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.2.0:rc4:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:digium:asterisk:1.8.1.2:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.1.1:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.4:rc3:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.4:rc2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.4:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.4:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.4.1:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.1:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:rc5:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:rc4:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:rc3:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:rc2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.3.3:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:beta5:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:beta4:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:beta3:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:beta2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:beta1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.0:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.2.3:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.2.2:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.2.1:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.2:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.3:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.1:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.3:rc3:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.3.1:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.3:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.3:rc2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.3.2:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.2.4:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.4.2:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.4.3:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.4.4:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.5:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.5:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.5.0:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.6.0:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.6.0:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.6.0:rc2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.6.0:rc3:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.7.0:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.7.0:rc1:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.7.0:rc2:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:1.8.7.1:*:*:*:*:*:*:*

OR cpe:/a:digium:asterisk:10.0.0:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:com.ubuntu.precise:def:20121184000	V	CVE-2012-1184 on Ubuntu 12.04 LTS (precise) - medium.	2012-09-18