CVE-2016-2316 Details

CVE-2016-2316

Published: 2016-02-22
Last Modified: 2017-11-04
CVE Author: NIST National Vulnerability Database
CVE Assigner: cve@mitre.org
Summary

chan_sip in Asterisk Open Source 1.8.x, 11.x before 11.21.1, 12.x, and 13.x before 13.7.1 and Certified Asterisk 1.8.28, 11.6 before 11.6-cert12, and 13.1 before 13.1-cert3, when the timert1 sip.conf configuration is set to a value greater than 1245, allows remote attackers to cause a denial of service (file descriptor consumption) via vectors related to large retransmit timeout values.

Analysis
Common Vulnerability Score System v2.0
Severity High
Base Score 7.1/10
Exploit Score 8.6/10
Access Vector Network
Access Complexity Medium
Authentication None
Impact Score 6.9/10
Confidentiality Impact None
Availability Impact Complete
Integrity Impact None
Vector String AV:N/AC:M/Au:N/C:N/I:N/A:C
Common Vulnerability Score System v3.1
Severity Medium
Base Score 5.9/10
Exploit Score 2.2/10
Access Vector Network
Access Complexity High
Privileges Required None
Impact Score 3.6/10
Confidentiality Impact None
Availability Impact High
Integrity Impact None
Scope Unchanged
User Interaction None
Vector String CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Products Reported
CPE Vulnerable Start Excluding
cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:* Yes - -
cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.0:beta1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.0:beta2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.0:beta3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.0:beta4:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.0:beta5:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.0:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.0:rc4:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.0:rc5:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.1:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.1.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.1.2:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.2:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.2.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.2.2:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.2.3:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.2.4:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.3:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.3:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.3:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.3:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.3.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.3.2:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.3.3:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.4:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.4:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.4:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.4:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.4.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.4.2:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.4.3:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.4.4:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.5:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.5:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.5.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.6.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.6.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.6.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.6.0:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.7.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.7.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.7.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.7.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.8.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.8.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.8.0:patch:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.8.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.8.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.8.0:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.8.0:rc4:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.8.0:rc5:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.8.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.8.2:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.9.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.9.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.9.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.9.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.9.0:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.9.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.9.2:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.9.3:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.10.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.10.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.10.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.10.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.10.0:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.10.0:rc4:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.10.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.11.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.11.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.11.0:patch:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.11.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.11.0:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.11.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.11.1:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.11.1:patch:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.12:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.12.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.12.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.12.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.12.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.12.0:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.12.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.12.2:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.13.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.13.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.13.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.13.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.14.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.14.0:patch:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.14.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.14.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.14.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.14.1:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.14.1:patch:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.15.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.15.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.15.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.15.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.16.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.16.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.16.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.16.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.17.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.17.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.17.0:patch:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.17.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.17.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.17.0:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.18.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.18.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.18.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.18.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.19.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.19.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.19.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.19.0:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.19.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.20.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.20.0:patch:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.20.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.20.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.20.1:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.20.1:patch:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.20.2:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.20.2:patch:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.21.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.21.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.21.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.22.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.22.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.22.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.23.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.23.0:patch:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.23.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.23.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.23.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.24.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.24.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.24.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.24.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.25.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.25.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.25.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.26.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.26.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.26.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.27.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.27.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.27.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.28.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.28.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.28.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.28.2:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:1.8.32.0:*:*:*:lts:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.0.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.0.0:beta1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.0.0:beta2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.0.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.0.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.0.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.0.2:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.1.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.1.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.1.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.1.0:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.1.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.1.2:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.2.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.4.0:rc4:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.6.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.6.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.6.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.7.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.7.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.7.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.8.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.8.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.8.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.8.0:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.8.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.9.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.9.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.9.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.9.0:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.10.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.10.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.10.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.10.1:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.11.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.11.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.12.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.12.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.13.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.13.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.14.0:*:*:*:lts:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.14.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.14.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.15.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.15.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.15.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.16.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.16.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.17.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.18.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.18.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.19.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.20.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.21.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.21.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.21.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:11.21.0:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.0.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.1.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.1.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.1.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.1.0:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.1.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.2.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.2.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.2.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.2.0:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.3.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.3.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.3.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.3.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.3.2:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.4.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.4.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.5.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.5.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.6.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.6.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.7.0:*:*:*:lts:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.7.0:*:*:*:standard:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.7.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.7.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.7.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.8.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.8.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.8.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.8.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:12.8.2:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.0.0:*:*:*:lts:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.0.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.1.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.1.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.1.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.2.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.2.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.3.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.4.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.4.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.5.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.5.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.6.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.7.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.7.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.7.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:asterisk:13.7.0:rc3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:1.8.28:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6:cert1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6:cert1:*:*:lts:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6:cert10:*:*:lts:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6:cert11:*:*:lts:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6:cert1_rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6:cert2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6:cert2:*:*:lts:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6:cert3:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6:cert3:*:*:lts:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6:cert4:*:*:lts:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6:cert5:*:*:lts:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6:cert6:*:*:lts:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6:cert7:*:*:lts:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6:cert8:*:*:lts:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6:cert9:*:*:lts:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6.0:*:*:*:lts:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6.0:-:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:11.6.0:rc2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:13.1:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:13.1:cert1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:13.1:cert2:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:13.1.0:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:13.1.0:rc1:*:*:*:*:*:* Yes - -
cpe:2.3:a:digium:certified_asterisk:13.1.0:rc2:*:*:*:*:*:* Yes - -
References

http://downloads.asterisk.org/pub/security/AST-2016-002.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177409.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177422.html
http://www.debian.org/security/2016/dsa-3700
http://www.securityfocus.com/bid/82651
http://www.securitytracker.com/id/1034930

CVE ID
CVE-2016-2316
Published
2016-02-22
Modified
2017-11-04
CVSSv2.0
High
CVSSv3.1
Medium
PCI Compliance
Pass
US-CERT Alert
No
CWE
CWE-191

You never have to pay for a vulnerability scanning and management software again.

Tired of paying a subscription 'per asset' or 'per IP'? Well you can officially cancel your current subscription. Mageni provides a free, open source and enterprise-ready vulnerability scanning and management platform which helps you to find, prioritize, remediate and manage your vulnerabilities.