Vulnerabilities > CVE-2005-3559 - Unspecified vulnerability in Digium Asterisk

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

digium

nessus

exploit available

NVD

Published: 2005-11-16

Updated: 2018-10-19

Summary

Directory traversal vulnerability in vmail.cgi in Asterisk 1.0.9 through 1.2.0-beta1 allows remote attackers to access WAV files via a .. (dot dot) in the folder parameter.

Vulnerable Configurations

Part	Description	Count
Application	Digium Digium Asterisk 0.1.0 Digium Asterisk 0.1.1 Digium Asterisk 0.1.2 Digium Asterisk 0.1.3 Digium Asterisk 0.1.4 Digium Asterisk 0.1.5 Digium Asterisk 0.1.6 Digium Asterisk 0.1.7 Digium Asterisk 0.1.8 Digium Asterisk 0.1.9 Digium Asterisk 0.1.10 Digium Asterisk 0.1.11 Digium Asterisk 0.1.12 Digium Asterisk 0.2.0 Digium Asterisk 0.3.0 Digium Asterisk 0.4.0 Digium Asterisk 0.5.0 Digium Asterisk 0.7.0 Digium Asterisk 0.7.1 Digium Asterisk 0.7.2 Digium Asterisk 1.0.0 Digium Asterisk 1.0.1 Digium Asterisk 1.0.2 Digium Asterisk 1.0.3 Digium Asterisk 1.0.4 Digium Asterisk 1.0.5 Digium Asterisk 1.0.6 Digium Asterisk 1.0.7 Digium Asterisk 1.0.8 Digium Asterisk 1.0.9 Digium Asterisk 1.0_Rc1 Digium Asterisk 1.0_Rc2 Digium Asterisk 1.2.0_Beta1	33

Exploit-Db

description	Asterisk 0.x/1.0/1.2 Voicemail Unauthorized Access Vulnerability. CVE-2005-3559. Webapps exploit for cgi platform
id	EDB-ID:26475
last seen	2016-02-03
modified	2005-11-07
published	2005-11-07
reporter	Adam Pointon
source	https://www.exploit-db.com/download/26475/
title	Asterisk 0.x/1.0/1.2 Voicemail Unauthorized Access Vulnerability

Nessus

NASL family	Debian Local Security Checks
NASL id	DEBIAN_DSA-1048.NASL
description	Several problems have been discovered in Asterisk, an Open Source Private Branch Exchange (telephone control center). The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2005-3559 Adam Pointon discovered that due to missing input sanitising it is possible to retrieve recorded phone messages for a different extension. - CVE-2006-1827 Emmanouel Kellinis discovered an integer signedness error that could trigger a buffer overflow and hence allow the execution of arbitrary code.
last seen	2020-06-01
modified	2020-06-02
plugin id	22590
published	2006-10-14
reporter	This script is Copyright (C) 2006-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/22590
title	Debian DSA-1048-1 : asterisk - several vulnerabilities

Summary

Vulnerable Configurations

Exploit-Db

Nessus

References