CVE-2012-1183

CVE Database · CVE-2012-1183

CVE-2012-1183

· N/AModified

CVSS v3.1

N/A

EPSS

3.73%

Published

Sep 18, 2012

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt application in Asterisk 1.4.x before 1.4.44, 1.6.x before 1.6.2.23, 1.8.x before 1.8.10.1, and 10.x before 10.2.1, when the o option is used and the internal_timing option is off, allows remote attackers to cause a denial of service (application crash) via a large number of samples in an audio packet.

Weaknesses (CWE)

CWE-119

Affected Products (5)

digium · asterisk (up to 1.4.44)vulnerable

digium · asterisk (up to 1.6.2.23)vulnerable

digium · asterisk (up to 1.8.10.1)vulnerable

digium · asterisk (up to 10.2.1)vulnerable

debian · debian_linuxvulnerable

References (20)

http://archives.neohapsis.com/archives/bugtraq/2012-03/0069.html

Broken Link

http://downloads.asterisk.org/pub/security/AST-2012-002-1.8.diff