Test ID:	1.3.6.1.4.1.25623.1.0.58152
Category:	Gentoo Local Security Checks
Title:	Gentoo Security Advisory GLSA 200703-14 (asterisk)
Summary:	The remote host is missing updates announced in;advisory GLSA 200703-14.
Description:	Summary: The remote host is missing updates announced in advisory GLSA 200703-14. Vulnerability Insight: Asterisk is vulnerable to Denial of Service in the SIP channel. Solution: All Asterisk users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose net-misc/asterisk Note: Asterisk 1.0.x is no longer supported upstream so users should consider upgrading to Asterisk 1.2.x. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2007-1306 BugTraq ID: 22838 http://www.securityfocus.com/bid/22838 CERT/CC vulnerability note: VU#228032 http://www.kb.cert.org/vuls/id/228032 Debian Security Information: DSA-1358 (Google Search) http://www.debian.org/security/2007/dsa-1358 http://security.gentoo.org/glsa/glsa-200703-14.xml http://labs.musecurity.com/advisories/MU-200703-01.txt http://www.osvdb.org/33888 http://www.securitytracker.com/id?1017723 http://secunia.com/advisories/24380 http://secunia.com/advisories/24578 http://secunia.com/advisories/25582 SuSE Security Announcement: SUSE-SA:2007:034 (Google Search) http://www.novell.com/linux/security/advisories/2007_34_asterisk.html http://www.vupen.com/english/advisories/2007/0830 XForce ISS Database: asterisk-sip-channeldriver-dos(32830) https://exchange.xforce.ibmcloud.com/vulnerabilities/32830
Copyright	Copyright (C) 2008 E-Soft Inc.

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.