Digium Asterisk Manager User Shell Command Execution - Ver2 (CVE-2012-2414)
A security bypass vulnerability has been reported in Digium Asterisk. The vulnerability is due to an error in the way the server validates permissions while executing shell commands from unauthorized users. A remote attacker can exploit this issue by sending specially crafted AMI requests to the...