CVE-2003-0779
EPSS 0.03%
Description
SQL injection vulnerability in the Call Detail Record (CDR) logging functionality for Asterisk allows remote attackers to execute arbitrary SQL via a CallerID string.
How to fix CVE-2003-0779
To remediate CVE-2003-0779, upgrade the affected package to a fixed version below.
- Debian/asterisk—upgrade to 0.7.0 or later
Is CVE-2003-0779 being exploited?
Low — EPSS is 0.0%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 0.7.0