Lucene search

K

RedhatCVELIST:CVE-2011-1599

HistoryApr 27, 2011 - 12:00 a.m.

CVE-2011-1599

2011-04-2700:00:00

redhat

www.cve.org

7 High

AI Score

Confidence

Low

0.01 Low

EPSS

Percentile

83.9%

manager.c in the Manager Interface in Asterisk Open Source 1.4.x before 1.4.40.1, 1.6.1.x before 1.6.1.25, 1.6.2.x before 1.6.2.17.3, and 1.8.x before 1.8.3.3 and Asterisk Business Edition C.x.x before C.3.6.4 does not properly check for the system privilege, which allows remote authenticated users to execute arbitrary commands via an Originate action that has an Async header in conjunction with an Application header.

References

downloads.digium.com/pub/security/AST-2011-006.html

lists.fedoraproject.org/pipermail/package-announce/2011-April/058922.html

lists.fedoraproject.org/pipermail/package-announce/2011-May/059702.html

openwall.com/lists/oss-security/2011/04/22/6

secunia.com/advisories/44197

secunia.com/advisories/44529

securitytracker.com/id?1025433

www.debian.org/security/2011/dsa-2225

www.securityfocus.com/bid/47537

www.vupen.com/english/advisories/2011/1086

www.vupen.com/english/advisories/2011/1107

www.vupen.com/english/advisories/2011/1188

7 High

AI Score

Confidence

Low

0.01 Low

EPSS

Percentile

83.9%

Related for CVELIST:CVE-2011-1599

prion1 debiancve1 cve1 nvd1 ubuntucve1 nessus6 fedora3 openvas8 debian1 osv1 gentoo1