Asterisk CIDR Notation In Access Rule Remote Security Bypass Vulnerability Network Vulnerability

Summary

Asterisk is prone to a security-bypass vulnerability. Attackers can exploit this issue to bypass access control list (ACL) rules, which may lead to other attacks.

Solution

Updates are available. Please see the references for details.

References

http://downloads.asterisk.org/pub/security/AST-2010-003.html
http://www.asterisk.org/
http://www.securityfocus.com/bid/38424

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-1224

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Apple Safari Webcore Webkit 'XSSAuditor.cpp' XSS Vulnerability (Windows)
Adobe Flash Player Unspecified Cross-Site Scripting Vulnerability June-2011 (Linux)
Apache Tomcat servlet/JSP container default files
Apple Mac OS X Multiple Vulnerabilities - 02 Jan14
Adobe Flash Player Multiple Security Bypass Vulnerabilities - 01 Feb14 (Windows)

Asterisk CIDR Notation in Access Rule Remote Security Bypass Vulnerability

Take action and discover your vulnerabilities