40 matches found
CVE-2024-42365
CVE-2024-42365 affects Asterisk prior to 18.24.2, 20.9.2, and 21.4.2 (and their certified-asterisk variants 18.9-cert11 and 20.7-cert2). An AMI user with write=originate can curl remote files and write them to disk, and can also append to existing files via the FILE function inside the SET applic...
CVE-2024-42365
Asterisk is an open source private branch exchange PBX and telephony toolkit. Prior to asterisk versions 18.24.2, 20.9.2, and 21.4.2 and certified-asterisk versions 18.9-cert11 and 20.7-cert2, an AMI user with write=originate may change all configuration files in the /etc/asterisk/ directory. Thi...
CVE-2024-42365
Asterisk is an open source private branch exchange PBX and telephony toolkit. Prior to asterisk versions 18.24.2, 20.9.2, and 21.4.2 and certified-asterisk versions 18.9-cert11 and 20.7-cert2, an AMI user with write=originate may change all configuration files in the /etc/asterisk/ directory. Thi...
Vicidial v2.14-783a - Multiple XSS Web Vulnerabilities
Document Title: =============== Vicidial v2.14-783a - Multiple XSS Web Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2311 Release Date: ============= 2022-10-10 Vulnerability Laboratory ID VL-ID: ==================================== 23...
VICIdial Cross-Site Scripting Vulnerability
Vicidial is a software suite from Vicidial, Inc. Designed to interact with the Asterisk open source Pbx phone system as a complete inbound/outbound contact center suite with inbound email support. A cross-site scripting vulnerability exists in VICIdial versions prior to 2.14b0.5, which stems from...
Elastix transactionID SQL Injection Vulnerability
Elastix is an Asterisk PBX operating tool. A SQL injection vulnerability in the Elastix a2billing/customer/iridiumthreed.php script handling transactionID allows remote attackers to exploit the vulnerability by submitting specially crafted SQL queries to manipulate or obtain database data...
ncredible PBX 2.0.6.5.0 - Remote Command Execution
No description provided by source. !/usr/bin/perl Title: Incredible PBX remote command execution exploit Author: Simo Ben youssef Contact: SimoatMorxploitcom Discovered: 1 September 2014 Coded: 21 October 2014 Published: 21 October 2014 MorXploit Research http://www.MorXploit.com Vendor: PBX in a...
Incredible PBX remote command execution exploit
!/usr/bin/perl Title: Incredible PBX remote command execution exploit Author: Simo Ben youssef Contact: SimoatMorxploitcom Discovered: 1 September 2014 Coded: 21 October 2014 Published: 21 October 2014 MorXploit Research http://www.MorXploit.com Vendor: PBX in a Flash Vendor url:...
Incredible PBX 2.0.6.5.0 - Remote Command Execution Exploit
Exploit for php platform in category web applications !/usr/bin/perl Title: Incredible PBX remote command execution exploit Author: Simo Ben youssef Contact: SimoatMorxploitcom Discovered: 1 September 2014 Coded: 21 October 2014 Published: 21 October 2014 MorXploit Research http://www.MorXploit.c...
Incredible PBX 2.0.6.5.0 - Remote Command Execution
!/usr/bin/perl Title: Incredible PBX remote command execution exploit Author: Simo Ben youssef Contact: SimoatMorxploitcom Discovered: 1 September 2014 Coded: 21 October 2014 Published: 21 October 2014 MorXploit Research http://www.MorXploit.com Vendor: PBX in a Flash Vendor url:...
Incredible PBX 2.0.6.5.0 - Remote Command Execution
Incredible PBX 2.0.6.5.0 - Remote Command Execution !/usr/bin/perl Title: Incredible PBX remote command execution exploit Author: Simo Ben youssef Contact: SimoatMorxploitcom Discovered: 1 September 2014 Coded: 21 October 2014 Published: 21 October 2014 MorXploit Research http://www.MorXploit.com...
Incredible PBX 11 2.0.6.5.0 Remote Command Execution Vulnerability
Incredible PBX 11 version 2.0.6.5.0 suffers from a remote command execution vulnerability. !/usr/bin/perl Title: Incredible PBX remote command execution exploit Author: Simo Ben youssef Contact: SimoatMorxploitcom Discovered: 1 September 2014 Coded: 21 October 2014 Published: 21 October 2014...
Incredible PBX 11 2.0.6.5.0 Remote Command Execution
!/usr/bin/perl Title: Incredible PBX remote command execution exploit Author: Simo Ben youssef Contact: SimoatMorxploitcom Discovered: 1 September 2014 Coded: 21 October 2014 Published: 21 October 2014 MorXploit Research http://www.MorXploit.com Vendor: PBX in a Flash Vendor url:...
Asterisk PBX 0.7.x Multiple Logging Format String Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/10569/info It is reported that Asterisk is susceptible to format string vulnerabilities in its logging functions. An attacker may use these vulnerabilities to corrupt memory, and read or write arbitrary memory. Remote cod...
Fedora Update for asterisk FEDORA-2014-3779
Check for the Version of asterisk OpenVAS Vulnerability Test Fedora Update for asterisk FEDORA-2014-3779 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
[SECURITY] Fedora 19 Update: asterisk-11.8.1-1.fc19
Asterisk is a complete PBX in software. It runs on Linux and provides all of the features you would expect from a PBX and more. Asterisk does voice over IP in three protocols, and can interoperate with almost all standards-based telephony equipment using relatively inexpensive hardware...
Fedora Update for asterisk FEDORA-2013-15567
Check for the Version of asterisk OpenVAS Vulnerability Test Fedora Update for asterisk FEDORA-2013-15567 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
VICIDIAL Call Center Suite 2.2.1-237 - Multiple Vulnerabilities
...:::::VICIDIAL call center suite Blind SQL Injection Vulnerability::::.... Sepahan TelCom IT Group septelcom ------------------------------------------------------- Date: 2012-09-07 Exploit Author: Sepahan TelCom IT Group septelcom Vendor Homepage: http://www.vicidial.org Software Link:...
Fedora Update for asterisk FEDORA-2012-4318
Check for the Version of asterisk OpenVAS Vulnerability Test Fedora Update for asterisk FEDORA-2012-4318 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for asterisk FEDORA-2011-8914
Check for the Version of asterisk OpenVAS Vulnerability Test Fedora Update for asterisk FEDORA-2011-8914 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...