Asterisk Shell Command Execution Security Bypass Vulnerability

Bugtraq ID: 53206
Class: Access Validation Error
CVE: CVE-2012-2414
Remote: Yes
Local: No
Published: Apr 23 2012 12:00AM
Updated: Jun 22 2012 12:10AM
Credit: David Woolley
Vulnerable: Red Hat Fedora 17
Red Hat Fedora 16
Red Hat Fedora 15
Gentoo Linux
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
Asterisk Asterisk Business Edition C.3.7.3
Asterisk Asterisk Business Edition C.3.6.4
Asterisk Asterisk Business Edition C.3.6.3
Asterisk Asterisk Business Edition C.3.6.2
Asterisk Asterisk Business Edition C.3.3.2
Asterisk Asterisk Business Edition C.3.2 3
Asterisk Asterisk Business Edition C.3.2 2
Asterisk Asterisk Business Edition C.3.1.0
Asterisk Asterisk Business Edition C.3.1 1
Asterisk Asterisk 10.0.1
Asterisk Asterisk 10.0
Asterisk Asterisk 1.8.8 2
Asterisk Asterisk 1.8.4 2
Asterisk Asterisk 1.8.4 1
Asterisk Asterisk 1.8.2 4
Asterisk Asterisk 1.8.1
Asterisk Asterisk 1.8
Asterisk Asterisk 1.6.2 16.2
Asterisk Asterisk 1.6.2 .5
Asterisk Asterisk 1.6.2
Asterisk Asterisk 10.3.0
Asterisk Asterisk 10.2.1
Asterisk Asterisk 10.2.0
Asterisk Asterisk 10.0
Asterisk Asterisk 1.8.7.2
Asterisk Asterisk 1.8.7.1
Asterisk Asterisk 1.8.4.4
Asterisk Asterisk 1.8.4.3
Asterisk Asterisk 1.8.3.3
Asterisk Asterisk 1.8.3.1
Asterisk Asterisk 1.8.2.1
Asterisk Asterisk 1.8.11.0
Asterisk Asterisk 1.8.10.1
Asterisk Asterisk 1.8.10.0
Asterisk Asterisk 1.8.1.2
Asterisk Asterisk 1.8
Asterisk Asterisk 1.6.2.23
Asterisk Asterisk 1.6.2.22
Asterisk Asterisk 1.6.2.21
Asterisk Asterisk 1.6.2.20
Asterisk Asterisk 1.6.2.2
Asterisk Asterisk 1.6.2.18.2
Asterisk Asterisk 1.6.2.18.1
Asterisk Asterisk 1.6.2.17.3
Asterisk Asterisk 1.6.2.17.1
Asterisk Asterisk 1.6.2.16.1
Asterisk Asterisk 1.6.2.15.1
Not Vulnerable: Asterisk Asterisk Business Edition C.3.7.4
Asterisk Asterisk 10.3.1
Asterisk Asterisk 1.8.11.1
Asterisk Asterisk 1.6.2.24


 

Privacy Statement
Copyright 2010, SecurityFocus