CVE-2007-6171

EPSS 0.19%

Published: 11/30/2007Modified: 4/28/2026

Description

SQL injection vulnerability in the Postgres Realtime Engine (res_config_pgsql) in Asterisk 1.4.x before 1.4.15 and C.x before C.1.0-beta6 allows remote attackers to execute arbitrary SQL commands via unknown vectors.

Affected packages (1)

Debian/asteriskfrom 0, < 1:1.4.15~dfsg-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-6171