CVE-2006-1827

CVE-2006-1827 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:P

Integer signedness error in format_jpeg.c in Asterisk 1.2.6 and earlier allows remote attackers to execute arbitrary code via a length value that passes a length check as a negative number, but triggers a buffer overflow when it is used as an unsigned length.

Learn more about our Web Application Penetration Testing UK.