{"id":"CVE-2014-6610","details":"Asterisk Open Source 11.x before 11.12.1 and 12.x before 12.5.1 and Certified Asterisk 11.6 before 11.6-cert6, when using the res_fax_spandsp module, allows remote authenticated users to cause a denial of service (crash) via an out of call message, which is not properly handled in the ReceiveFax dialplan application.","modified":"2026-04-16T06:22:56.168425939Z","published":"2014-11-26T15:59:02Z","references":[{"type":"ADVISORY","url":"http://downloads.asterisk.org/pub/security/AST-2014-010.html"},{"type":"FIX","url":"http://downloads.asterisk.org/pub/security/AST-2014-010.html"}],"schema_version":"1.7.5"}