CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
94.2%
Asterisk 1.2.10 supports the use of client-controlled variables to determine filenames in the Record function, which allows remote attackers to (1) execute code via format string specifiers or (2) overwrite files via directory traversals involving unspecified vectors, as demonstrated by the CALLERIDNAME variable.
labs.musecurity.com/advisories/MU-200608-01.txt
secunia.com/advisories/22651
securitytracker.com/id?1016742
www.gentoo.org/security/en/glsa/glsa-200610-15.xml
www.securityfocus.com/archive/1/444322/100/0/threaded
www.securityfocus.com/bid/19683
www.sineapps.com/news.php?rssid=1448
www.vupen.com/english/advisories/2006/3372
exchange.xforce.ibmcloud.com/vulnerabilities/28544
exchange.xforce.ibmcloud.com/vulnerabilities/28564