CVE-2007-1595

Name of the Vulnerable Software and Affected Versions Asterisk (affected versions not specified)

Description The issue is related to the Asterisk Extension Language (AEL) in pbx/pbx ael.c, which does not properly generate extensions. This allows remote attackers to execute arbitrary extensions by specifying an invalid extension in a certain form, potentially having an unknown impact.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.