Digium Asterisk GUI CVE-2017-14001 OS Command Injection Vulnerability

Digium Asterisk GUI is prone to an OS command-injection vulnerability because it fails to properly sanitize user-supplied input.

Successfully exploiting this issue may allow an attacker to execute arbitrary code in the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.

Asterisk GUI 2.1.0 and prior versions are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus