manager.c in the Manager Interface in Asterisk Open Source 1.4.x prior to 1.4.40.1, 1.6.1.x prior to 1.6.1.25, 1.6.2.x prior to 1.6.2.17.3, and 1.8.x prior to 1.8.3.3 and Asterisk Business Edition C.x.x before C.3.6.4 does not properly check for the system privilege, which allows remote authenticated users to execute arbitrary commands via an Originate action that has an Async header in conjunction with an Application header.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
digium asterisk 1.4.29.1 |
||
digium asterisk 1.4.19 |
||
digium asterisk 1.4.31 |
||
digium asterisk 1.4.20 |
||
digium asterisk 1.4.21 |
||
digium asterisk 1.4.11 |
||
digium asterisk 1.4.15 |
||
digium asterisk 1.4.28 |
||
digium asterisk 1.4.30 |
||
digium asterisk 1.4.2 |
||
digium asterisk 1.4.20.1 |
||
digium asterisk 1.4.10 |
||
digium asterisk 1.4.12.1 |
||
digium asterisk 1.4.16.2 |
||
digium asterisk 1.4.18 |
||
digium asterisk 1.4.25 |
||
digium asterisk 1.4.26 |
||
digium asterisk 1.4.26.1 |
||
digium asterisk 1.4.22 |
||
digium asterisk 1.4.23 |
||
digium asterisk 1.4.0 |
||
digium asterisk 1.4.34 |
||
digium asterisk 1.4.29 |
||
digium asterisk 1.4.19.2 |
||
digium asterisk 1.4.10.1 |
||
digium asterisk 1.4.16 |
||
digium asterisk 1.4.17 |
||
digium asterisk 1.4.14 |
||
digium asterisk 1.4.25.1 |
||
digium asterisk 1.4.26.3 |
||
digium asterisk 1.4.27 |
||
digium asterisk 1.4.23.2 |
||
digium asterisk 1.4.27.1 |
||
digium asterisk 1.4.35 |
||
digium asterisk 1.4.32 |
||
digium asterisk 1.4.38 |
||
digium asterisk 1.4.37 |
||
digium asterisk 1.4.40 |
||
digium asterisk 1.4.23.1 |
||
digium asterisk 1.4.24 |
||
digium asterisk 1.4.33.1 |
||
digium asterisk 1.4.33 |
||
digium asterisk 1.4.3 |
||
digium asterisk 1.4.36 |
||
digium asterisk 1.4.39 |
||
digium asterisk 1.4.19.1 |
||
digium asterisk 1.4.21.1 |
||
digium asterisk 1.4.21.2 |
||
digium asterisk 1.4.1 |
||
digium asterisk 1.4.13 |
||
digium asterisk 1.4.16.1 |
||
digium asterisk 1.4.26.2 |
||
digium asterisk 1.4.22.2 |
||
digium asterisk 1.4.22.1 |
||
digium asterisk 1.4.24.1 |
||
digium asterisk 1.4.39.1 |
||
digium asterisk 1.4.39.2 |
||
digium asterisk 1.4.12 |
||
digium asterisk 1.6.2.0 |
||
digium asterisk 1.6.2.2 |
||
digium asterisk 1.6.2.3 |
||
digium asterisk 1.6.2.16.1 |
||
digium asterisk 1.6.2.16.2 |
||
digium asterisk 1.6.2.15 |
||
digium asterisk 1.6.2.6 |
||
digium asterisk 1.6.2.17 |
||
digium asterisk 1.6.2.1 |
||
digium asterisk 1.6.2.5 |
||
digium asterisk 1.6.2.16 |
||
digium asterisk 1.6.2.17.2 |
||
digium asterisk 1.6.2.4 |
||
digium asterisk 1.6.2.17.1 |
||
digium asterisk 1.8.2.2 |
||
digium asterisk 1.8.2.3 |
||
digium asterisk 1.8.0 |
||
digium asterisk 1.8.3 |
||
digium asterisk 1.8.1.2 |
||
digium asterisk 1.8.1.1 |
||
digium asterisk 1.8.1 |
||
digium asterisk 1.8.2.4 |
||
digium asterisk 1.8.3.2 |
||
digium asterisk 1.8.2 |
||
digium asterisk 1.8.2.1 |
||
digium asterisk 1.8.3.1 |
||
digium asterisk c.3.0 |
||
digium asterisk c.1.6.2 |
||
digium asterisk c.1.8.0 |
||
digium asterisk c.1.0 |
||
digium asterisk c.3.2.3 |
||
digium asterisk c.3.2.2 |
||
digium asterisk c.3.3.2 |
||
digium asterisk c.1.8.1 |
||
digium asterisk c.3.1.0 |
||
digium asterisk c.3.1.1 |
||
digium asterisk c.1.6 |
||
digium asterisk c.1.6.1 |
||
digium asterisk c.2.3 |
||
digium asterisk c.3.6.2 |
||
digium asterisk 1.6.1.5 |
||
digium asterisk 1.6.1.18 |
||
digium asterisk 1.6.1.19 |
||
digium asterisk 1.6.1.10 |
||
digium asterisk 1.6.1.14 |
||
digium asterisk 1.6.1.22 |
||
digium asterisk 1.6.1.0 |
||
digium asterisk 1.6.1.15 |
||
digium asterisk 1.6.1.2 |
||
digium asterisk 1.6.1.7 |
||
digium asterisk 1.6.1.8 |
||
digium asterisk 1.6.1.20 |
||
digium asterisk 1.6.1.21 |
||
digium asterisk 1.6.1.3 |
||
digium asterisk 1.6.1.4 |
||
digium asterisk 1.6.1.9 |
||
digium asterisk 1.6.1.17 |
||
digium asterisk 1.6.1.12 |
||
digium asterisk 1.6.1.11 |
||
digium asterisk 1.6.1.23 |
||
digium asterisk 1.6.1.16 |
||
digium asterisk 1.6.1.1 |
||
digium asterisk 1.6.1.6 |
||
digium asterisk 1.6.1.13 |
||
digium asterisk 1.6.1.24 |