CVE-2007-6171

描述

SQL injection vulnerability in the Postgres Realtime Engine (res_config_pgsql) in Asterisk 1.4.x before 1.4.15 and C.x before C.1.0-beta6 allows remote attackers to execute arbitrary SQL commands via unknown vectors.

受影響套件(1)

• Debian/asteriskfrom 0, < 1:1.4.15~dfsg-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-6171