NVD脆弱性詳細

CVE-2011-4597

概要	The SIP over UDP implementation in Asterisk Open Source 1.4.x before 1.4.43, 1.6.x before 1.6.2.21, and 1.8.x before 1.8.7.2 uses different port numbers for responses to invalid requests depending on whether a SIP username exists, which allows remote attackers to enumerate usernames via a series of requests.
公表日	2011年12月15日12:57
登録日	2021年1月28日16:39
最終更新日	2024年11月21日10:32

CVSS2.0 : MEDIUM
スコア	5.0
ベクター	AV:N/AC:L/Au:N/C:P/I:N/A:N
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	低
完全性への影響(I)	なし
可用性への影響(A)	なし
全ての特権を取得	いいえ
ユーザー権限を取得	いいえ
その他の権限を取得	いいえ
ユーザー操作が必要	いいえ

影響を受けるソフトウェアの構成

構成1	以上	以下	より上	未満
cpe:2.3:a:digium:asterisk:1.8.3:rc3::::::
cpe:2.3:a:digium:asterisk:1.8.3:::::::*
cpe:2.3:a:digium:asterisk:1.8.2.4:::::::*
cpe:2.3:a:digium:asterisk:1.8.0:beta2::::::
cpe:2.3:a:digium:asterisk:1.8.6.0:rc3::::::
cpe:2.3:a:digium:asterisk:1.8.3:rc1::::::
cpe:2.3:a:digium:asterisk:1.8.1:::::::*
cpe:2.3:a:digium:asterisk:1.8.1.2:::::::*
cpe:2.3:a:digium:asterisk:1.8.7.1:::::::*
cpe:2.3:a:digium:asterisk:1.8.7.0:rc1::::::
cpe:2.3:a:digium:asterisk:1.8.4.3:::::::*
cpe:2.3:a:digium:asterisk:1.8.0:beta4::::::
cpe:2.3:a:digium:asterisk:1.8.4:rc1::::::
cpe:2.3:a:digium:asterisk:1.8.0:rc5::::::
cpe:2.3:a:digium:asterisk:1.8.4.4:::::::*
cpe:2.3:a:digium:asterisk:1.8.7.0:::::::*
cpe:2.3:a:digium:asterisk:1.8.5.0:::::::*
cpe:2.3:a:digium:asterisk:1.8.3.1:::::::*
cpe:2.3:a:digium:asterisk:1.8.0:beta3::::::
cpe:2.3:a:digium:asterisk:1.8.0:beta5::::::
cpe:2.3:a:digium:asterisk:1.8.4:::::::*
cpe:2.3:a:digium:asterisk:1.8.3.2:::::::*
cpe:2.3:a:digium:asterisk:1.8.0:rc2::::::
cpe:2.3:a:digium:asterisk:1.8.7.0:rc2::::::
cpe:2.3:a:digium:asterisk:1.8.3:rc2::::::
cpe:2.3:a:digium:asterisk:1.8.4.2:::::::*
cpe:2.3:a:digium:asterisk:1.8.6.0:rc2::::::
cpe:2.3:a:digium:asterisk:1.8.2.3:::::::*
cpe:2.3:a:digium:asterisk:1.8.3.3:::::::*
cpe:2.3:a:digium:asterisk:1.8.4:rc2::::::
cpe:2.3:a:digium:asterisk:1.8.2.1:::::::*
cpe:2.3:a:digium:asterisk:1.8.1:rc1::::::
cpe:2.3:a:digium:asterisk:1.8.0:::::::*
cpe:2.3:a:digium:asterisk:1.8.0:rc3::::::
cpe:2.3:a:digium:asterisk:1.8.1.1:::::::*
cpe:2.3:a:digium:asterisk:1.8.2:::::::*
cpe:2.3:a:digium:asterisk:1.8.2.2:::::::*
cpe:2.3:a:digium:asterisk:1.8.4:rc3::::::
cpe:2.3:a:digium:asterisk:1.8.0:beta1::::::
cpe:2.3:a:digium:asterisk:1.8.6.0:::::::*
cpe:2.3:a:digium:asterisk:1.8.0:rc4::::::
cpe:2.3:a:digium:asterisk:1.8.5:rc1::::::
cpe:2.3:a:digium:asterisk:1.8.5:::::::*
cpe:2.3:a:digium:asterisk:1.8.4.1:::::::*
cpe:2.3:a:digium:asterisk:1.8.6.0:rc1::::::

構成2	以上	以下	より上	未満
cpe:2.3:a:digium:asterisk:1.6.2.16.2:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.0:rc3::::::
cpe:2.3:a:digium:asterisk:1.6.2.0:rc2::::::
cpe:2.3:a:digium:asterisk:1.6.2.1:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.0:rc4::::::
cpe:2.3:a:digium:asterisk:1.6.2.4:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.6:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.0:rc5::::::
cpe:2.3:a:digium:asterisk:1.6.2.0:rc7::::::
cpe:2.3:a:digium:asterisk:1.6.2.16:rc1::::::
cpe:2.3:a:digium:asterisk:1.6.2.17:rc1::::::
cpe:2.3:a:digium:asterisk:1.6.2.1:rc1::::::
cpe:2.3:a:digium:asterisk:1.6.2.16:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.15:rc1::::::
cpe:2.3:a:digium:asterisk:1.6.2.17:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.21:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.20:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.6:rc1::::::
cpe:2.3:a:digium:asterisk:1.6.2.17.1:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.2:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.0:rc8::::::
cpe:2.3:a:digium:asterisk:1.6.2.3:rc2::::::
cpe:2.3:a:digium:asterisk:1.6.2.17:rc3::::::
cpe:2.3:a:digium:asterisk:1.6.2.16.1:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.19:rc1::::::
cpe:2.3:a:digium:asterisk:1.6.2.0:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.17:rc2::::::
cpe:2.3:a:digium:asterisk:1.6.2.18:rc1::::::
cpe:2.3:a:digium:asterisk:1.6.2.5:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.17.3:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.19:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.18:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.0:rc6::::::
cpe:2.3:a:digium:asterisk:1.6.2.6:rc2::::::
cpe:2.3:a:digium:asterisk:1.6.2.17.2:::::::*

構成3	以上	以下	より上	未満
cpe:2.3:a:digium:asterisk:1.4.37:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.26.3:::::::*
cpe:2.3:a:digium:asterisk:1.4.5:::::::*
cpe:2.3:a:digium:asterisk:1.4.22:rc3::::::
cpe:2.3:a:digium:asterisk:1.4.27:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.36:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.26:rc4::::::
cpe:2.3:a:digium:asterisk:1.4.28:::::::*
cpe:2.3:a:digium:asterisk:1.4.27:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.27.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.41.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.26:rc5::::::
cpe:2.3:a:digium:asterisk:1.4.0:beta4::::::
cpe:2.3:a:digium:asterisk:1.4.0:beta2::::::
cpe:2.3:a:digium:asterisk:1.4.35:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.26.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.19.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.26.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.20:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.16:::::::*
cpe:2.3:a:digium:asterisk:1.4.3:::::::*
cpe:2.3:a:digium:asterisk:1.4.27:rc3::::::
cpe:2.3:a:digium:asterisk:1.4.19.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.30:::::::*
cpe:2.3:a:digium:asterisk:1.4.38:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.38:::::::*
cpe:2.3:a:digium:asterisk:1.4.4:::::::*
cpe:2.3:a:digium:asterisk:1.4.33:::::::*
cpe:2.3:a:digium:asterisk:1.4.23:rc4::::::
cpe:2.3:a:digium:asterisk:1.4.22:::::::*
cpe:2.3:a:digium:asterisk:1.4.0:::::::*
cpe:2.3:a:digium:asterisk:1.4.32:::::::*
cpe:2.3:a:digium:asterisk:1.4.31:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.22.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.26:rc3::::::
cpe:2.3:a:digium:asterisk:1.4.6:::::::*
cpe:2.3:a:digium:asterisk:1.4.33:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.20:::::::*
cpe:2.3:a:digium:asterisk:1.4.39:::::::*
cpe:2.3:a:digium:asterisk:1.4.22.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.39.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.12.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.41:::::::*
cpe:2.3:a:digium:asterisk:1.4.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.19:::::::*
cpe:2.3:a:digium:asterisk:1.4.29:::::::*
cpe:2.3:a:digium:asterisk:1.4.20:rc3::::::
cpe:2.3:a:digium:asterisk:1.4.18:::::::*
cpe:2.3:a:digium:asterisk:1.4.34:::::::*
cpe:2.3:a:digium:asterisk:1.4.21:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.22:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.40:::::::*
cpe:2.3:a:digium:asterisk:1.4.10:::::::*
cpe:2.3:a:digium:asterisk:1.4.41:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.41.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.35:::::::*
cpe:2.3:a:digium:asterisk:1.4.24.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.10.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.16.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.19:rc4::::::
cpe:2.3:a:digium:asterisk:1.4.31:::::::*
cpe:2.3:a:digium:asterisk:1.4.33.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.25:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.42:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.25:::::::*
cpe:2.3:a:digium:asterisk:1.4.11:::::::*
cpe:2.3:a:digium:asterisk:1.4.23:::::::*
cpe:2.3:a:digium:asterisk:1.4.39.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.7:::::::*
cpe:2.3:a:digium:asterisk:1.4.7.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.26:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.29:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.22:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.15:::::::*
cpe:2.3:a:digium:asterisk:1.4.34:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.31:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.42:::::::*
cpe:2.3:a:digium:asterisk:1.4.28:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.40:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.19:rc3::::::
cpe:2.3:a:digium:asterisk:1.4.23:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.27:::::::*
cpe:2.3:a:digium:asterisk:1.4.25.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.34:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.21.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.19:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.9:::::::*
cpe:2.3:a:digium:asterisk:1.4.12:::::::*
cpe:2.3:a:digium:asterisk:1.4.37:::::::*
cpe:2.3:a:digium:asterisk:1.4.20:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.19:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.13:::::::*
cpe:2.3:a:digium:asterisk:1.4.21.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.27:rc4::::::
cpe:2.3:a:digium:asterisk:1.4.40.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.33:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.17:::::::*
cpe:2.3:a:digium:asterisk:1.4.40:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.29.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.23:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.22:rc4::::::
cpe:2.3:a:digium:asterisk:1.4.22:rc5::::::
cpe:2.3:a:digium:asterisk:1.4.42:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.40.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.21:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.26:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.26:rc6::::::
cpe:2.3:a:digium:asterisk:1.4.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.32:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.39:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.14:::::::*
cpe:2.3:a:digium:asterisk:1.4.20.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.24:::::::*
cpe:2.3:a:digium:asterisk:1.4.0:beta1::::::
cpe:2.3:a:digium:asterisk:1.4.40:rc3::::::
cpe:2.3:a:digium:asterisk:1.4.24:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.26:::::::*
cpe:2.3:a:digium:asterisk:1.4.16.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.23.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.27:rc5::::::
cpe:2.3:a:digium:asterisk:1.4.30:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.23.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.23:rc3::::::
cpe:2.3:a:digium:asterisk:1.4.8:::::::*
cpe:2.3:a:digium:asterisk:1.4.30:rc3::::::
cpe:2.3:a:digium:asterisk:1.4.36:::::::*
cpe:2.3:a:digium:asterisk:1.4.0:beta3::::::
cpe:2.3:a:digium:asterisk:1.4.21:::::::*

構成1	以上	以下	より上	未満
cpe:2.3:a:digium:asterisk:1.8.3:rc3::::::
cpe:2.3:a:digium:asterisk:1.8.3:::::::*
cpe:2.3:a:digium:asterisk:1.8.2.4:::::::*
cpe:2.3:a:digium:asterisk:1.8.0:beta2::::::
cpe:2.3:a:digium:asterisk:1.8.6.0:rc3::::::
cpe:2.3:a:digium:asterisk:1.8.3:rc1::::::
cpe:2.3:a:digium:asterisk:1.8.1:::::::*
cpe:2.3:a:digium:asterisk:1.8.1.2:::::::*
cpe:2.3:a:digium:asterisk:1.8.7.1:::::::*
cpe:2.3:a:digium:asterisk:1.8.7.0:rc1::::::
cpe:2.3:a:digium:asterisk:1.8.4.3:::::::*
cpe:2.3:a:digium:asterisk:1.8.0:beta4::::::
cpe:2.3:a:digium:asterisk:1.8.4:rc1::::::
cpe:2.3:a:digium:asterisk:1.8.0:rc5::::::
cpe:2.3:a:digium:asterisk:1.8.4.4:::::::*
cpe:2.3:a:digium:asterisk:1.8.7.0:::::::*
cpe:2.3:a:digium:asterisk:1.8.5.0:::::::*
cpe:2.3:a:digium:asterisk:1.8.3.1:::::::*
cpe:2.3:a:digium:asterisk:1.8.0:beta3::::::
cpe:2.3:a:digium:asterisk:1.8.0:beta5::::::
cpe:2.3:a:digium:asterisk:1.8.4:::::::*
cpe:2.3:a:digium:asterisk:1.8.3.2:::::::*
cpe:2.3:a:digium:asterisk:1.8.0:rc2::::::
cpe:2.3:a:digium:asterisk:1.8.7.0:rc2::::::
cpe:2.3:a:digium:asterisk:1.8.3:rc2::::::
cpe:2.3:a:digium:asterisk:1.8.4.2:::::::*
cpe:2.3:a:digium:asterisk:1.8.6.0:rc2::::::
cpe:2.3:a:digium:asterisk:1.8.2.3:::::::*
cpe:2.3:a:digium:asterisk:1.8.3.3:::::::*
cpe:2.3:a:digium:asterisk:1.8.4:rc2::::::
cpe:2.3:a:digium:asterisk:1.8.2.1:::::::*
cpe:2.3:a:digium:asterisk:1.8.1:rc1::::::
cpe:2.3:a:digium:asterisk:1.8.0:::::::*
cpe:2.3:a:digium:asterisk:1.8.0:rc3::::::
cpe:2.3:a:digium:asterisk:1.8.1.1:::::::*
cpe:2.3:a:digium:asterisk:1.8.2:::::::*
cpe:2.3:a:digium:asterisk:1.8.2.2:::::::*
cpe:2.3:a:digium:asterisk:1.8.4:rc3::::::
cpe:2.3:a:digium:asterisk:1.8.0:beta1::::::
cpe:2.3:a:digium:asterisk:1.8.6.0:::::::*
cpe:2.3:a:digium:asterisk:1.8.0:rc4::::::
cpe:2.3:a:digium:asterisk:1.8.5:rc1::::::
cpe:2.3:a:digium:asterisk:1.8.5:::::::*
cpe:2.3:a:digium:asterisk:1.8.4.1:::::::*
cpe:2.3:a:digium:asterisk:1.8.6.0:rc1::::::

構成2	以上	以下	より上	未満
cpe:2.3:a:digium:asterisk:1.6.2.16.2:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.0:rc3::::::
cpe:2.3:a:digium:asterisk:1.6.2.0:rc2::::::
cpe:2.3:a:digium:asterisk:1.6.2.1:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.0:rc4::::::
cpe:2.3:a:digium:asterisk:1.6.2.4:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.6:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.0:rc5::::::
cpe:2.3:a:digium:asterisk:1.6.2.0:rc7::::::
cpe:2.3:a:digium:asterisk:1.6.2.16:rc1::::::
cpe:2.3:a:digium:asterisk:1.6.2.17:rc1::::::
cpe:2.3:a:digium:asterisk:1.6.2.1:rc1::::::
cpe:2.3:a:digium:asterisk:1.6.2.16:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.15:rc1::::::
cpe:2.3:a:digium:asterisk:1.6.2.17:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.21:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.20:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.6:rc1::::::
cpe:2.3:a:digium:asterisk:1.6.2.17.1:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.2:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.0:rc8::::::
cpe:2.3:a:digium:asterisk:1.6.2.3:rc2::::::
cpe:2.3:a:digium:asterisk:1.6.2.17:rc3::::::
cpe:2.3:a:digium:asterisk:1.6.2.16.1:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.19:rc1::::::
cpe:2.3:a:digium:asterisk:1.6.2.0:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.17:rc2::::::
cpe:2.3:a:digium:asterisk:1.6.2.18:rc1::::::
cpe:2.3:a:digium:asterisk:1.6.2.5:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.17.3:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.19:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.18:::::::*
cpe:2.3:a:digium:asterisk:1.6.2.0:rc6::::::
cpe:2.3:a:digium:asterisk:1.6.2.6:rc2::::::
cpe:2.3:a:digium:asterisk:1.6.2.17.2:::::::*

構成3	以上	以下	より上	未満
cpe:2.3:a:digium:asterisk:1.4.37:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.26.3:::::::*
cpe:2.3:a:digium:asterisk:1.4.5:::::::*
cpe:2.3:a:digium:asterisk:1.4.22:rc3::::::
cpe:2.3:a:digium:asterisk:1.4.27:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.36:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.26:rc4::::::
cpe:2.3:a:digium:asterisk:1.4.28:::::::*
cpe:2.3:a:digium:asterisk:1.4.27:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.27.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.41.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.26:rc5::::::
cpe:2.3:a:digium:asterisk:1.4.0:beta4::::::
cpe:2.3:a:digium:asterisk:1.4.0:beta2::::::
cpe:2.3:a:digium:asterisk:1.4.35:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.26.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.19.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.26.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.20:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.16:::::::*
cpe:2.3:a:digium:asterisk:1.4.3:::::::*
cpe:2.3:a:digium:asterisk:1.4.27:rc3::::::
cpe:2.3:a:digium:asterisk:1.4.19.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.30:::::::*
cpe:2.3:a:digium:asterisk:1.4.38:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.38:::::::*
cpe:2.3:a:digium:asterisk:1.4.4:::::::*
cpe:2.3:a:digium:asterisk:1.4.33:::::::*
cpe:2.3:a:digium:asterisk:1.4.23:rc4::::::
cpe:2.3:a:digium:asterisk:1.4.22:::::::*
cpe:2.3:a:digium:asterisk:1.4.0:::::::*
cpe:2.3:a:digium:asterisk:1.4.32:::::::*
cpe:2.3:a:digium:asterisk:1.4.31:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.22.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.26:rc3::::::
cpe:2.3:a:digium:asterisk:1.4.6:::::::*
cpe:2.3:a:digium:asterisk:1.4.33:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.20:::::::*
cpe:2.3:a:digium:asterisk:1.4.39:::::::*
cpe:2.3:a:digium:asterisk:1.4.22.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.39.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.12.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.41:::::::*
cpe:2.3:a:digium:asterisk:1.4.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.19:::::::*
cpe:2.3:a:digium:asterisk:1.4.29:::::::*
cpe:2.3:a:digium:asterisk:1.4.20:rc3::::::
cpe:2.3:a:digium:asterisk:1.4.18:::::::*
cpe:2.3:a:digium:asterisk:1.4.34:::::::*
cpe:2.3:a:digium:asterisk:1.4.21:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.22:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.40:::::::*
cpe:2.3:a:digium:asterisk:1.4.10:::::::*
cpe:2.3:a:digium:asterisk:1.4.41:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.41.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.35:::::::*
cpe:2.3:a:digium:asterisk:1.4.24.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.10.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.16.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.19:rc4::::::
cpe:2.3:a:digium:asterisk:1.4.31:::::::*
cpe:2.3:a:digium:asterisk:1.4.33.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.25:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.42:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.25:::::::*
cpe:2.3:a:digium:asterisk:1.4.11:::::::*
cpe:2.3:a:digium:asterisk:1.4.23:::::::*
cpe:2.3:a:digium:asterisk:1.4.39.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.7:::::::*
cpe:2.3:a:digium:asterisk:1.4.7.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.26:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.29:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.22:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.15:::::::*
cpe:2.3:a:digium:asterisk:1.4.34:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.31:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.42:::::::*
cpe:2.3:a:digium:asterisk:1.4.28:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.40:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.19:rc3::::::
cpe:2.3:a:digium:asterisk:1.4.23:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.27:::::::*
cpe:2.3:a:digium:asterisk:1.4.25.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.34:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.21.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.19:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.9:::::::*
cpe:2.3:a:digium:asterisk:1.4.12:::::::*
cpe:2.3:a:digium:asterisk:1.4.37:::::::*
cpe:2.3:a:digium:asterisk:1.4.20:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.19:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.13:::::::*
cpe:2.3:a:digium:asterisk:1.4.21.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.27:rc4::::::
cpe:2.3:a:digium:asterisk:1.4.40.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.33:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.17:::::::*
cpe:2.3:a:digium:asterisk:1.4.40:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.29.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.23:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.22:rc4::::::
cpe:2.3:a:digium:asterisk:1.4.22:rc5::::::
cpe:2.3:a:digium:asterisk:1.4.42:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.40.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.21:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.26:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.26:rc6::::::
cpe:2.3:a:digium:asterisk:1.4.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.32:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.39:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.14:::::::*
cpe:2.3:a:digium:asterisk:1.4.20.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.24:::::::*
cpe:2.3:a:digium:asterisk:1.4.0:beta1::::::
cpe:2.3:a:digium:asterisk:1.4.40:rc3::::::
cpe:2.3:a:digium:asterisk:1.4.24:rc1::::::
cpe:2.3:a:digium:asterisk:1.4.26:::::::*
cpe:2.3:a:digium:asterisk:1.4.16.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.23.2:::::::*
cpe:2.3:a:digium:asterisk:1.4.27:rc5::::::
cpe:2.3:a:digium:asterisk:1.4.30:rc2::::::
cpe:2.3:a:digium:asterisk:1.4.23.1:::::::*
cpe:2.3:a:digium:asterisk:1.4.23:rc3::::::
cpe:2.3:a:digium:asterisk:1.4.8:::::::*
cpe:2.3:a:digium:asterisk:1.4.30:rc3::::::
cpe:2.3:a:digium:asterisk:1.4.36:::::::*
cpe:2.3:a:digium:asterisk:1.4.0:beta3::::::
cpe:2.3:a:digium:asterisk:1.4.21:::::::*

No	URL	refsource	タグ
1	http://archives.neohapsis.com/archives/bugtraq/2011-12/0151.html
2	http://downloads.asterisk.org/pub/security/AST-2011-013.html
3	http://lists.digium.com/pipermail/asterisk-dev/2011-November/052191.html
4	http://openwall.com/lists/oss-security/2011/12/09/3
5	http://openwall.com/lists/oss-security/2011/12/09/4
6	http://osvdb.org/77597
7	http://secunia.com/advisories/47273
8	http://www.debian.org/security/2011/dsa-2367
9	http://archives.neohapsis.com/archives/bugtraq/2011-12/0151.html
10	http://www.debian.org/security/2011/dsa-2367
11	http://secunia.com/advisories/47273
12	http://osvdb.org/77597
13	http://openwall.com/lists/oss-security/2011/12/09/4
14	http://openwall.com/lists/oss-security/2011/12/09/3
15	http://lists.digium.com/pipermail/asterisk-dev/2011-November/052191.html
16	http://downloads.asterisk.org/pub/security/AST-2011-013.html

タイトル	Asterisk の UDP 実装での SIP におけるユーザ名を列挙される脆弱性
概要	Asterisk の SIP over UDP 実装は、SIP ユーザ名が存在しているかどうかに応じて、無効なリクエストに対して異なるポート番号を使用するため、ユーザ名を列挙される脆弱性が存在します。
想定される影響	第三者により、連続したリクエストを介して、ユーザ名を列挙される可能性があります。
対策	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
公表日	2011年7月18日0:00
登録日	2011年12月19日15:01
最終更新日	2011年12月19日15:01

No	名前	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2011-4597	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4597
National Vulnerability Database (NVD)
2	CVE-2011-4597	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4597

No	名前	URL
Asterisk Project Security Advisory
1	AST-2011-013	http://downloads.asterisk.org/pub/security/AST-2011-013.html

No	名前	URL
JVNDB
1	CWE-200	https://jvndb.jvn.jp/ja/cwe/CWE-200.html