CVE-2012-2186
published 2012-08-31CVE-2012-2186: Incomplete blacklist vulnerability in main/manager.c in Asterisk Open Source 1.8.x before 1.8.15.1 and 10.x before 10.7.1, Certified Asterisk 1.8.11 before…
PriorityP352critical9CVSS 2.0
AVNACLAuSCCICAC
EPSS
3.56%
87.9th percentile
Incomplete blacklist vulnerability in main/manager.c in Asterisk Open Source 1.8.x before 1.8.15.1 and 10.x before 10.7.1, Certified Asterisk 1.8.11 before 1.8.11-cert6, Asterisk Digiumphones 10.x.x-digiumphones before 10.7.1-digiumphones, and Asterisk Business Edition C.3.x before C.3.7.6 allows remote authenticated users to execute arbitrary commands by leveraging originate privileges and providing an ExternalIVR value in an AMI Originate action.
Affected
59 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| asterisk | business_edition | <= c.3.7.5 | — |
| asterisk | business_edition | — | — |
| asterisk | certified_asterisk | <= 1.8.11 | — |
| asterisk | certified_asterisk | — | — |
| asterisk | digiumphones | <= 10.7.0 | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
CVSS provenance
nvdv2.09.0CRITICALAV:N/AC:L/Au:S/C:C/I:C/A:C
osv9.0CRITICAL
vendor_debian9.0CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2012-2186: asterisk - Incomplete blacklist vulnerability in main/manager.c in Asterisk Open Source 1.8...
vendor_debian·2012·CVSS 9.0
CVE-2012-2186 [CRITICAL] CVE-2012-2186: asterisk - Incomplete blacklist vulnerability in main/manager.c in Asterisk Open Source 1.8...
Incomplete blacklist vulnerability in main/manager.c in Asterisk Open Source 1.8.x before 1.8.15.1 and 10.x before 10.7.1, Certified Asterisk 1.8.11 before 1.8.11-cert6, Asterisk Digiumphones 10.x.x-digiumphones before 10.7.1-digiumphones, and Asterisk Business Edition C.3.x before C.3.7.6 allows remote authenticated users to execute arbitrary commands by leveraging originate privileges and providing an ExternalIVR value in an AMI Originate action.
Scope: local
bullseye: resolved (fixed in 1:1.8.13.1~dfsg-1)
sid: resolved (fixed in 1:1.8.13.1~dfsg-1)
GHSA
GHSA-27ch-ccxg-45pf: Incomplete blacklist vulnerability in main/manager
ghsa_unreviewed·2022-05-17
CVE-2012-2186 [HIGH] GHSA-27ch-ccxg-45pf: Incomplete blacklist vulnerability in main/manager
Incomplete blacklist vulnerability in main/manager.c in Asterisk Open Source 1.8.x before 1.8.15.1 and 10.x before 10.7.1, Certified Asterisk 1.8.11 before 1.8.11-cert6, Asterisk Digiumphones 10.x.x-digiumphones before 10.7.1-digiumphones, and Asterisk Business Edition C.3.x before C.3.7.6 allows remote authenticated users to execute arbitrary commands by leveraging originate privileges and providing an ExternalIVR value in an AMI Originate action.
OSV
CVE-2012-2186: Incomplete blacklist vulnerability in main/manager
osv·2012-08-31·CVSS 9.0
CVE-2012-2186 [CRITICAL] CVE-2012-2186: Incomplete blacklist vulnerability in main/manager
Incomplete blacklist vulnerability in main/manager.c in Asterisk Open Source 1.8.x before 1.8.15.1 and 10.x before 10.7.1, Certified Asterisk 1.8.11 before 1.8.11-cert6, Asterisk Digiumphones 10.x.x-digiumphones before 10.7.1-digiumphones, and Asterisk Business Edition C.3.x before C.3.7.6 allows remote authenticated users to execute arbitrary commands by leveraging originate privileges and providing an ExternalIVR value in an AMI Originate action.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2012-2186 Asterisk: Asterisk Manager User Unauthorized Shell Access
bugzilla·2012-08-31·CVSS 9.0
CVE-2012-2186 [CRITICAL] CVE-2012-2186 Asterisk: Asterisk Manager User Unauthorized Shell Access
CVE-2012-2186 Asterisk: Asterisk Manager User Unauthorized Shell Access
AST-2012-012
The AMI Originate action can allow a remote user to specify information that can
be used to execute shell commands on the system hosting Asterisk. This can
result in an unwanted escalation of permissions, as the Originate action, which
requires the “originate” class authorization, can be used to perform actions that
would typically require the “system” class authorization. Previous attempts to
prevent this permission escalation (AST-2011-006, AST-2012-004) have sought to
do so by inspecting the names of applications and functions passed in with the
Originate action and, if those applications/functions matched a predefined set of
values, rejecting the command if the user lacked the “system” class
authoriz
Bugzilla
CVE-2012-2186 Asterisk: Asterisk Manager User Unauthorized Shell Access [epel-6]
bugzilla·2012-08-31·CVSS 9.0
CVE-2012-2186 [CRITICAL] CVE-2012-2186 Asterisk: Asterisk Manager User Unauthorized Shell Access [epel-6]
CVE-2012-2186 Asterisk: Asterisk Manager User Unauthorized Shell Access [epel-6]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=sec
Bugzilla
CVE-2012-2186 Asterisk: Asterisk Manager User Unauthorized Shell Access [fedora-16]
bugzilla·2012-08-31·CVSS 9.0
CVE-2012-2186 [CRITICAL] CVE-2012-2186 Asterisk: Asterisk Manager User Unauthorized Shell Access [fedora-16]
CVE-2012-2186 Asterisk: Asterisk Manager User Unauthorized Shell Access [fedora-16]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=
Bugzilla
CVE-2012-2186 Asterisk: Asterisk Manager User Unauthorized Shell Access [fedora-17]
bugzilla·2012-08-31·CVSS 9.0
CVE-2012-2186 [CRITICAL] CVE-2012-2186 Asterisk: Asterisk Manager User Unauthorized Shell Access [fedora-17]
CVE-2012-2186 Asterisk: Asterisk Manager User Unauthorized Shell Access [fedora-17]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=
http://downloads.asterisk.org/pub/security/AST-2012-012.htmlhttp://secunia.com/advisories/50687http://secunia.com/advisories/50756http://www.debian.org/security/2012/dsa-2550http://www.securitytracker.com/id?1027460http://downloads.asterisk.org/pub/security/AST-2012-012.htmlhttp://secunia.com/advisories/50687http://secunia.com/advisories/50756http://www.debian.org/security/2012/dsa-2550http://www.securitytracker.com/id?1027460
2012-08-31
Published