Asterisk CIDR Notation In Access Rule Remote Security Bypass Vulnerability Network Vulnerability

Summary

Asterisk is prone to a security-bypass vulnerability. Attackers can exploit this issue to bypass access control list (ACL) rules, which may lead to other attacks.

Solution

Updates are available. Please see the references for details.

References

http://downloads.asterisk.org/pub/security/AST-2010-003.html
http://www.asterisk.org/
http://www.securityfocus.com/bid/38424

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-1224
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Apache Error Log Escape Sequence Injection
Apple Safari 'background' Remote Denial Of Service Vulnerability
Adobe Digital Edition Information Disclosure Vulnerability (Windows)
Apple Safari 'SRC' Remote Denial Of Service Vulnerability
Apache Tomcat Default Accounts

Asterisk CIDR Notation in Access Rule Remote Security Bypass Vulnerability

Take action and discover your vulnerabilities