VYPR
Unrated severityNVD Advisory· Published Mar 20, 2008· Updated Jun 16, 2026

CVE-2008-1333

CVE-2008-1333

Description

Format string vulnerability in Asterisk Open Source 1.6.x before 1.6.0-beta6 might allow remote attackers to execute arbitrary code via logging messages that are not properly handled by (1) the ast_verbose logging API call, or (2) the astman_append function.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • cpe:2.3:a:asterisk:open_source:1.6.0_beta1:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:asterisk:open_source:1.6.0_beta1:*:*:*:*:*:*:*
    • cpe:2.3:a:asterisk:open_source:1.6.0_beta2:*:*:*:*:*:*:*
    • cpe:2.3:a:asterisk:open_source:1.6.0_beta3:*:*:*:*:*:*:*
    • cpe:2.3:a:asterisk:open_source:1.6.0_beta4:*:*:*:*:*:*:*
    • cpe:2.3:a:asterisk:open_source:1.6.0_beta5:*:*:*:*:*:*:*
  • Digium/Asteriskllm-fuzzy
    Range: <1.6.0-beta6
  • Range: <1.6.0-beta6

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.