Lucene search
RootSSV:62027HistoryApr 01, 2014 - 12:00 a.m.
FreePBX Framework模块admin/libraries/view.functions.php远程代码执行漏洞
2014-04-0100:00:00
Root
www.seebug.org
11
0.965 High
EPSS
Percentile
99.6%
CVE ID:CVE-2014-1903
FreePBX是开源Web PBX解决方案。
FreePBX admin/libraries/view.functions.php没有限制API处理程序可访问的函数集,这可使远程攻击者通过 admin/config.php 的函数和参数,利用此漏洞执行任意PHP代码。
0
FreePBX 2.9
目前厂商已经发布了升级补丁以修复漏洞,请下载使用:
http://www.freepbx.org/news/2014-02-06/security-vulnerability-notice
Related
seebug
seebug
FreePBX 2.11.0 - Remote Command Execution
2014-07-01 00:00:00
openvas
openvas
FreePBX 2.9 - 12 RCE Vulnerability - Active Check
2014-03-14 00:00:00
saint
saint
FreePBX Framework Module view.functions.php Remote Code Execution
2014-04-03 00:00:00
FreePBX Framework Module view.functions.php Remote Code Execution
2014-04-03 00:00:00
FreePBX Framework Module view.functions.php Remote Code Execution
2014-04-03 00:00:00
prion
prion
Code injection
2014-02-18 11:55:00
nvd
nvd
CVE-2014-1903
2014-02-18 11:55:16
cvelist
cvelist
CVE-2014-1903
2014-02-18 11:00:00
cve
cve
CVE-2014-1903
2014-02-18 11:55:16
exploitpack
exploitpack
FreePBX 2.11.0 - Remote Command Execution
2014-03-12 00:00:00
checkpoint_advisories
checkpoint_advisories
FreePBX config php Code Execution (CVE-2014-1903)
2014-05-18 00:00:00
packetstorm
packetstorm
FreePBX config.php Remote Code Execution
2014-03-25 00:00:00
zdt
zdt
FreePBX config.php Remote Code Execution Vulnerability
2014-03-25 00:00:00
exploitdb
exploitdb
FreePBX 2.11.0 - Remote Command Execution
2014-03-12 00:00:00