Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2007-1595

Published: 22/03/2007 Updated: 08/03/2011
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Asterisk

Vulnerability Summary

The Asterisk Extension Language (AEL) in pbx/pbx_ael.c in Asterisk does not properly generate extensions, which allows remote malicious users to execute arbitrary extensions and have an unknown impact by specifying an invalid extension in a certain form.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

asterisk asterisk 1.2.13

References

NVD-CWE-Otherhttp://bugs.digium.com/view.php?id=9316http://svn.digium.com/view/asterisk?rev=59073&view=revhttp://secunia.com/advisories/24694http://www.novell.com/linux/security/advisories/2007_34_asterisk.htmlhttp://www.securityfocus.com/bid/23155http://secunia.com/advisories/25582http://www.vupen.com/english/advisories/2007/1123https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-29895injectCVE-2023-52689CVE-2024-5049CVE-2024-5051privilege escalationphysicalCVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook