Summary
Asterisk is prone to a security-bypass vulnerability.
Attackers can exploit this issue to bypass access control list (ACL) rules, which may lead to other attacks.
Solution
Updates are available. Please see the references for details.
References
Severity
Classification
-
CVE CVE-2010-1224 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- Adobe Reader Plugin Signature Bypass Vulnerability (Windows)
- Arris DOCSIS Password Disclosure
- Adobe Flash Player/Air Multiple Vulnerabilities -feb10 (Win)
- Apple iTunes Insecure Permissions Privilege Escalation Vulnerability (Mac OS X)
- Adobe LiveCycle Designer Untrusted Search Path Vulnerability (Windows)