Asterisk Dialplan '${EXTEN}' Variable String Injection Vulnerability

Asterisk is prone to a string-injection vulnerability that occurs in a dialplan.

Attackers can exploit this issue to execute unintended calls. This may lead to further attacks.


 

Privacy Statement
Copyright 2010, SecurityFocus