CVE-2006-4346
N/A
N/A
Summary
Asterisk 1.2.10 supports the use of client-controlled variables to determine filenames in the Record function, which allows remote attackers to (1) execute code via format string specifiers or (2) overwrite files via directory traversals involving unspecified vectors, as demonstrated by the CALLERIDNAME variable.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28544
- http://www.vupen.com/english/advisories/2006/3372
- http://www.gentoo.org/security/en/glsa/glsa-200610-15.xml
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28564
- http://labs.musecurity.com/advisories/MU-200608-01.txt
- http://secunia.com/advisories/22651
- http://www.securityfocus.com/bid/19683
- http://securitytracker.com/id?1016742
- http://www.securityfocus.com/archive/1/444322/100/0/threaded
- http://www.sineapps.com/news.php?rssid=1448
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28544
- http://www.vupen.com/english/advisories/2006/3372
- http://www.gentoo.org/security/en/glsa/glsa-200610-15.xml
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28564
- http://labs.musecurity.com/advisories/MU-200608-01.txt
- http://secunia.com/advisories/22651
- http://www.securityfocus.com/bid/19683
- http://securitytracker.com/id?1016742
- http://www.securityfocus.com/archive/1/444322/100/0/threaded
- http://www.sineapps.com/news.php?rssid=1448
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.