CVE-2005-3559

EPSS 5.5%

asterisk - several vulnerabilities

發布日:2005/11/16修改日:2026/4/28

描述

Directory traversal vulnerability in vmail.cgi in Asterisk 1.0.9 through 1.2.0-beta1 allows remote attackers to access WAV files via a .. (dot dot) in the folder parameter.

受影響套件(2)

Debian/asteriskfrom 0, < 1:1.2.7.1.dfsg-2
Debian/asteriskfrom 0, < 0.1.11-3woody1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2005-3559