Short Name |
HTTP:MISC:FREEPBX-CFG-CODE-EXEC |
---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
FreePBX Framework Module config.php Code Execution |
Release Date |
2014/08/06 |
Update Number |
2406 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability against FreePBX. The vulnerability is due to an error in admin/config.php, the main interface to FreePBX. A remote unauthenticated attacker can exploit this vulnerability to execute arbitrary code on the vulnerable system with the privileges of FreePBX.
admin/libraries/view.functions.php in FreePBX 2.9 before 2.9.0.14, 2.10 before 2.10.1.15, 2.11 before 2.11.0.23, and 12 before 12.0.1alpha22 does not restrict the set of functions accessible to the API handler, which allows remote attackers to execute arbitrary PHP code via the function and args parameters to admin/config.php.