CVE-2007-2191

FreePBX 2.2 - SIP Packet Multiple HTML Injection Vulnerabilities

Severity Score

6.8

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Multiple cross-site scripting (XSS) vulnerabilities in freePBX 2.2.x allow remote attackers to inject arbitrary web script or HTML via the (1) From, (2) To, (3) Call-ID, (4) User-Agent, and unspecified other SIP protocol fields, which are stored in /var/log/asterisk/full and displayed by admin/modules/logfiles/asterisk-full-log.php.

Múltiples vulnerabilidades de secuencia de comandos en sitios cruzados (XSS) en freePBX 2.2.x permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de los campos (1) From, (2) To, (3) Call-ID, (4) User-Agent, y otros no especificados del protocolo SIP, lo cuales son almacenados en /var/log/asterisk/full y mostrados por admin/modules/logfiles/asterisk-full-log.php.

*Credits: N/A

CVSS Scores

NISTv2 6.8

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2007-04-20 First Exploit
2007-04-24 CVE Reserved
2007-04-24 CVE Published
2024-07-28 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CAPEC

References (8)

URL	Tag	Source
http://osvdb.org/35315	Vdb Entry
http://secunia.com/advisories/24935	Third Party Advisory
http://securityreason.com/securityalert/2627	Third Party Advisory
http://www.securityfocus.com/bid/23575	Vdb Entry
http://www.vupen.com/english/advisories/2007/1535	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/33772	Vdb Entry

URL	Date	SRC
https://www.exploit-db.com/exploits/29873	2007-04-20
http://lists.grok.org.uk/pipermail/full-disclosure/2007-April/053882.html	2024-08-07

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Freepbx Search vendor "Freepbx"	Freepbx Search vendor "Freepbx" for product "Freepbx"	2.2.1 Search vendor "Freepbx" for product "Freepbx" and version "2.2.1"	-	Affected	in	Bsd Search vendor "Bsd"	Bsd Search vendor "Bsd" for product "Bsd"	*	-	Safe
Freepbx Search vendor "Freepbx"	Freepbx Search vendor "Freepbx" for product "Freepbx"	2.2.1 Search vendor "Freepbx" for product "Freepbx" and version "2.2.1"	-	Affected	in	Hp Search vendor "Hp"	Hp-ux Search vendor "Hp" for product "Hp-ux"	*	-	Safe
Freepbx Search vendor "Freepbx"	Freepbx Search vendor "Freepbx" for product "Freepbx"	2.2.1 Search vendor "Freepbx" for product "Freepbx" and version "2.2.1"	-	Affected	in	Hp Search vendor "Hp"	Tru64 Search vendor "Hp" for product "Tru64"	*	-	Safe
Freepbx Search vendor "Freepbx"	Freepbx Search vendor "Freepbx" for product "Freepbx"	2.2.1 Search vendor "Freepbx" for product "Freepbx" and version "2.2.1"	-	Affected	in	Ibm Search vendor "Ibm"	Aix Search vendor "Ibm" for product "Aix"	*	-	Safe
Freepbx Search vendor "Freepbx"	Freepbx Search vendor "Freepbx" for product "Freepbx"	2.2.1 Search vendor "Freepbx" for product "Freepbx" and version "2.2.1"	-	Affected	in	Linux Search vendor "Linux"	Linux Kernel Search vendor "Linux" for product "Linux Kernel"	*	-	Safe
Freepbx Search vendor "Freepbx"	Freepbx Search vendor "Freepbx" for product "Freepbx"	2.2.1 Search vendor "Freepbx" for product "Freepbx" and version "2.2.1"	-	Affected	in	Santa Cruz Operation Search vendor "Santa Cruz Operation"	Sco Unix Search vendor "Santa Cruz Operation" for product "Sco Unix"	*	-	Safe
Freepbx Search vendor "Freepbx"	Freepbx Search vendor "Freepbx" for product "Freepbx"	2.2.1 Search vendor "Freepbx" for product "Freepbx" and version "2.2.1"	-	Affected	in	Sun Search vendor "Sun"	Solaris Search vendor "Sun" for product "Solaris"	*	-	Safe
Freepbx Search vendor "Freepbx"	Freepbx Search vendor "Freepbx" for product "Freepbx"	2.2_rc1 Search vendor "Freepbx" for product "Freepbx" and version "2.2_rc1"	-	Affected	in	Bsd Search vendor "Bsd"	Bsd Search vendor "Bsd" for product "Bsd"	*	-	Safe
Freepbx Search vendor "Freepbx"	Freepbx Search vendor "Freepbx" for product "Freepbx"	2.2_rc1 Search vendor "Freepbx" for product "Freepbx" and version "2.2_rc1"	-	Affected	in	Hp Search vendor "Hp"	Hp-ux Search vendor "Hp" for product "Hp-ux"	*	-	Safe
Freepbx Search vendor "Freepbx"	Freepbx Search vendor "Freepbx" for product "Freepbx"	2.2_rc1 Search vendor "Freepbx" for product "Freepbx" and version "2.2_rc1"	-	Affected	in	Hp Search vendor "Hp"	Tru64 Search vendor "Hp" for product "Tru64"	*	-	Safe
Freepbx Search vendor "Freepbx"	Freepbx Search vendor "Freepbx" for product "Freepbx"	2.2_rc1 Search vendor "Freepbx" for product "Freepbx" and version "2.2_rc1"	-	Affected	in	Ibm Search vendor "Ibm"	Aix Search vendor "Ibm" for product "Aix"	*	-	Safe
Freepbx Search vendor "Freepbx"	Freepbx Search vendor "Freepbx" for product "Freepbx"	2.2_rc1 Search vendor "Freepbx" for product "Freepbx" and version "2.2_rc1"	-	Affected	in	Linux Search vendor "Linux"	Linux Kernel Search vendor "Linux" for product "Linux Kernel"	*	-	Safe
Freepbx Search vendor "Freepbx"	Freepbx Search vendor "Freepbx" for product "Freepbx"	2.2_rc1 Search vendor "Freepbx" for product "Freepbx" and version "2.2_rc1"	-	Affected	in	Santa Cruz Operation Search vendor "Santa Cruz Operation"	Sco Unix Search vendor "Santa Cruz Operation" for product "Sco Unix"	*	-	Safe
Freepbx Search vendor "Freepbx"	Freepbx Search vendor "Freepbx" for product "Freepbx"	2.2_rc1 Search vendor "Freepbx" for product "Freepbx" and version "2.2_rc1"	-	Affected	in	Sun Search vendor "Sun"	Solaris Search vendor "Sun" for product "Solaris"	*	-	Safe