CVE-2012-2414
published 2012-04-30CVE-2012-2414: main/manager.c in the Manager Interface in Asterisk Open Source 1.6.2.x before 1.6.2.24, 1.8.x before 1.8.11.1, and 10.x before 10.3.1 and Asterisk Business…
PriorityP341medium6.5CVSS 2.0
AVNACLAuSCPIPAP
EPSS
2.72%
84.2th percentile
main/manager.c in the Manager Interface in Asterisk Open Source 1.6.2.x before 1.6.2.24, 1.8.x before 1.8.11.1, and 10.x before 10.3.1 and Asterisk Business Edition C.3.x before C.3.7.4 does not properly enforce System class authorization requirements, which allows remote authenticated users to execute arbitrary commands via (1) the originate action in the MixMonitor application, (2) the SHELL and EVAL functions in the GetVar manager action, or (3) the SHELL and EVAL functions in the Status manager action.
Affected
76 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
| asterisk | open_source | — | — |
CVSS provenance
nvdv2.06.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P
osv6.5MEDIUM
vendor_debian6.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-7g5f-32j4-ffm7: main/manager
ghsa_unreviewed·2022-05-17
CVE-2012-2414 [MEDIUM] CWE-287 GHSA-7g5f-32j4-ffm7: main/manager
main/manager.c in the Manager Interface in Asterisk Open Source 1.6.2.x before 1.6.2.24, 1.8.x before 1.8.11.1, and 10.x before 10.3.1 and Asterisk Business Edition C.3.x before C.3.7.4 does not properly enforce System class authorization requirements, which allows remote authenticated users to execute arbitrary commands via (1) the originate action in the MixMonitor application, (2) the SHELL and EVAL functions in the GetVar manager action, or (3) the SHELL and EVAL functions in the Status manager action.
OSV
CVE-2012-2414: main/manager
osv·2012-04-30·CVSS 6.5
CVE-2012-2414 [MEDIUM] CVE-2012-2414: main/manager
main/manager.c in the Manager Interface in Asterisk Open Source 1.6.2.x before 1.6.2.24, 1.8.x before 1.8.11.1, and 10.x before 10.3.1 and Asterisk Business Edition C.3.x before C.3.7.4 does not properly enforce System class authorization requirements, which allows remote authenticated users to execute arbitrary commands via (1) the originate action in the MixMonitor application, (2) the SHELL and EVAL functions in the GetVar manager action, or (3) the SHELL and EVAL functions in the Status manager action.
Debian
CVE-2012-2414: asterisk - main/manager.c in the Manager Interface in Asterisk Open Source 1.6.2.x before 1...
vendor_debian·2012·CVSS 6.5
CVE-2012-2414 [MEDIUM] CVE-2012-2414: asterisk - main/manager.c in the Manager Interface in Asterisk Open Source 1.6.2.x before 1...
main/manager.c in the Manager Interface in Asterisk Open Source 1.6.2.x before 1.6.2.24, 1.8.x before 1.8.11.1, and 10.x before 10.3.1 and Asterisk Business Edition C.3.x before C.3.7.4 does not properly enforce System class authorization requirements, which allows remote authenticated users to execute arbitrary commands via (1) the originate action in the MixMonitor application, (2) the SHELL and EVAL functions in the GetVar manager action, or (3) the SHELL and EVAL functions in the Status manager action.
Scope: local
bullseye: resolved (fixed in 1:1.8.11.1~dfsg-1)
sid: resolved (fixed in 1:1.8.11.1~dfsg-1)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2012-2662 Certificate System: multiple XSS flaws
bugzilla·2012-05-30·CVSS 4.3
CVE-2012-2662 [MEDIUM] CVE-2012-2662 Certificate System: multiple XSS flaws
CVE-2012-2662 Certificate System: multiple XSS flaws
Multiple cross-site scripting issues were discovered in the Red Hat Certificate System's / Dogtag Certificate System's Agent and End Entity pages. An attacker could use these flaw to perform a cross-site scripting (XSS) attack against victims viewing Certificate System's web interface.
The issue was originally reported via bug #814478.
Following fixes were applied to address these issues:
https://fedorahosted.org/pki/changeset/2411
https://fedorahosted.org/pki/changeset/2414
https://fedorahosted.org/pki/changeset/2417
https://fedorahosted.org/pki/changeset/2426
Discussion:
This issue has been addressed in following products:
Red Hat Certificate System 8
Via RHSA-2012:1103 https://rhn.redhat.com/errata/RHSA-2012-1103.html
---
***
Bugzilla
CVE-2012-2414 CVE-2012-2415 CVE-2012-2416 asterisk various flaws [fedora-all]
bugzilla·2012-04-24·CVSS 6.5
CVE-2012-2414 [MEDIUM] CVE-2012-2414 CVE-2012-2415 CVE-2012-2416 asterisk various flaws [fedora-all]
CVE-2012-2414 CVE-2012-2415 CVE-2012-2416 asterisk various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=securi
Bugzilla
CVE-2012-2414 CVE-2012-2415 CVE-2012-2416 asterisk various flaws [epel-6]
bugzilla·2012-04-24·CVSS 6.5
CVE-2012-2414 [MEDIUM] CVE-2012-2414 CVE-2012-2415 CVE-2012-2416 asterisk various flaws [epel-6]
CVE-2012-2414 CVE-2012-2415 CVE-2012-2416 asterisk various flaws [epel-6]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&b
Bugzilla
CVE-2012-2414 asterisk: Asterisk Manager Interface unauthorized shell access (AST-2012-004)
bugzilla·2012-04-24·CVSS 6.5
CVE-2012-2414 [MEDIUM] CVE-2012-2414 asterisk: Asterisk Manager Interface unauthorized shell access (AST-2012-004)
CVE-2012-2414 asterisk: Asterisk Manager Interface unauthorized shell access (AST-2012-004)
A permission escalation flaw was found in the way Asterisk, an open-source telephony toolkit, performed user permission checks (only Asterisk System class user should be able to run shell commands if that user had System class authorization). Due to a bug, an Asterisk manager interface user could bypass the security check and execute shell commands by using the MixMonitor application with the originate action or by using the GetVar or Status manager actions in the combination with SHELL and EVAL functions.
Upstream advisory:
http://downloads.asterisk.org/pub/security/AST-2012-004.html
Upstream patch (against the v1.8 branch):
http://downloads.asterisk.org/pub/security/AST-2012-004-1.8.diff
Upstr
http://downloads.asterisk.org/pub/security/AST-2012-004.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2012-May/079759.htmlhttp://osvdb.org/81454http://secunia.com/advisories/48891http://secunia.com/advisories/48941http://www.debian.org/security/2012/dsa-2460http://www.securityfocus.com/bid/53206http://www.securitytracker.com/id?1026961https://exchange.xforce.ibmcloud.com/vulnerabilities/75100http://downloads.asterisk.org/pub/security/AST-2012-004.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2012-May/079759.htmlhttp://osvdb.org/81454http://secunia.com/advisories/48891http://secunia.com/advisories/48941http://www.debian.org/security/2012/dsa-2460http://www.securityfocus.com/bid/53206http://www.securitytracker.com/id?1026961https://exchange.xforce.ibmcloud.com/vulnerabilities/75100
2012-04-30
Published