CVE-2010-0685
The design of the dialplan functionality in Asterisk Open Source 1.2.x, 1.4.x, and 1.6.x; and Asterisk Business Edition B.x.x and C.x.x, when using the ${EXTEN} channel variable and wildcard pattern matches, allows context-dependent attackers to inject strings into the dialplan using metacharacters that are injected when the variable is expanded, as demonstrated using the Dial application to process a crafted SIP INVITE message that adds an unintended outgoing channel leg. NOTE: it could be argued that this is not a vulnerability in Asterisk, but a class of vulnerabilities that can occur in any program that uses this feature without the associated filtering functionality that is already available.
EPSS 0.10% · 27.4th percentile
Risk Scores
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| digium | asterisk | 1.2.0, 1.2.0, 1.2.0 |
Timeline
- Feb 23, 2010 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- http://svn.asterisk.org/svn/asterisk/branches/1.2/README-SERIOUSLY.bestpractices.txt url
- 39096 third-party-advisory
- 1023637 vdb
- FEDORA-2010-3724 vendor-advisory
- 20100218 AST-2010-002: Dialplan injection vulnerability mailing-list
- 38641 third-party-advisory
- http://downloads.digium.com/pub/security/AST-2010-002.html url
- ADV-2010-0439 vdb
- asterisk-dial-weak-security(56397) vdb
- https://nvd.nist.gov/vuln/detail/CVE-2010-0685 advisory