Unrated severityNVD Advisory· Published Jul 30, 2009· Updated Jun 16, 2026
CVE-2009-2651
CVE-2009-2651
Description
main/rtp.c in Asterisk Open Source 1.6.1 before 1.6.1.2 allows remote attackers to cause a denial of service (crash) via an RTP text frame without a certain delimiter, which triggers a NULL pointer dereference and the subsequent calculation of an invalid pointer.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =1.6.1 before 1.6.1.2
Patches
Vulnerability mechanics
References
8- www.vupen.com/english/advisories/2009/2067nvdPatchVendor Advisory
- downloads.digium.com/pub/security/AST-2009-004-1.6.1.diff.txtnvdExploit
- downloads.asterisk.org/pub/security/AST-2009-004.htmlnvdVendor Advisory
- secunia.com/advisories/36039nvdVendor Advisory
- osvdb.org/56571nvd
- www.securityfocus.com/bid/35837nvd
- www.securitytracker.com/idnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/52046nvd
News mentions
0No linked articles in our index yet.