openSUSE 10 Security Update : asterisk (asterisk-1676)

High Nessus Plugin ID 27155


The remote openSUSE host is missing a security update.


A security problem was fixed in the IAX2 channel driver of Asterisk that could be used by remote users to execute code or at least crash Asterisk. This issue is tracked by the Mitre CVE ID CVE-2006-2898.


Update the affected asterisk package.

Plugin Details

Severity: High

ID: 27155

File Name: suse_asterisk-1676.nasl

Version: $Revision: 1.8 $

Type: local

Agent: unix

Published: 2007/10/17

Modified: 2014/06/13

Dependencies: 12634

Risk Information

Risk Factor: High


Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:asterisk, cpe:/o:novell:opensuse:10.1

Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list, Host/cpu

Patch Publication Date: 2006/06/19

Reference Information

CVE: CVE-2006-2898