CVE-CVE-2007-4280 | UNKNOWN Severity | CVEDatabase.com

Description

The Skinny channel driver (chan_skinny) in Asterisk Open Source before 1.4.10, AsteriskNOW before beta7, Appliance Developer Kit before 0.7.0, and Appliance s800i before 1.0.3 allows remote authenticated users to cause a denial of service (application crash) via a CAPABILITIES_RES_MESSAGE packet with a capabilities count larger than the capabilities_res_message array population.

CVSS Metrics

Vector: AV:N/AC:M/Au:S/C:N/I:N/A:P
Access Vector: network
Access Cmplx: medium
Auth: single
Confidentiality: none
Integrity: none
Availability: partial
Weaknesses: NVD-CWE-Other

Metadata

Primary Vendor: ASTERISK
Published: 8/9/2007
Last Modified: 4/9/2025
Source: NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

asterisk : asteriskasterisk : asterisk_appliance_developer_kitasterisk : asterisknowasterisk : s800i

AI-Powered Remediation

Generate remediation guidance or a C-suite brief for this vulnerability.

Executive Intelligence Brief

View on NIST NVD