Tag : unauthorized shell

Asterisk Manager User Unauthorized Shell Access

Posted April 23, 2012 by Pavel Espinal & filed under VoIP News Comments: 0.

Tags: access nature, asterisk, linkedin, manager interface, Security, shell commands, source, unauthorized shell, User

A user of the Asterisk Manager Interface can bypass a security check and execute shell commands when they lack permission to do so. Under normal conditions, a user should only be able to run shell commands if that user has System class authorizati..

Read more