Kamailio up to 4.2.0-1 access control

Summaryinfo

A vulnerability classified as problematic was found in Kamailio up to 4.2.0-1. Impacted is an unknown function. Executing a manipulation can lead to access control. The identification of this vulnerability is CVE-2015-1591. The attack can only be executed locally. There is no exploit available. Upgrading the affected component is advised.

Detailsinfo

A vulnerability classified as problematic was found in Kamailio up to 4.2.0-1. This vulnerability affects an unknown function. The manipulation with an unknown input leads to a access control vulnerability. The CWE definition for the vulnerability is CWE-264. As an impact it is known to affect confidentiality, integrity, and availability. CVE summarizes:

The kamailio build in kamailio before 4.2.0-2 process allows local users to gain privileges.

The bug was discovered 02/12/2015. The weakness was shared 06/27/2017 (oss-sec). The advisory is shared for download at openwall.com. This vulnerability was named CVE-2015-1591 since 02/12/2015. The exploitation appears to be easy. The attack needs to be approached locally. No form of authentication is required for a successful exploitation. There are neither technical details nor an exploit publicly available. The MITRE ATT&CK project declares the attack technique as T1068.

The vulnerability was handled as a non-public zero-day exploit for at least 866 days. During that time the estimated underground price was around $0-$5k.

Upgrading to version 4.2.0-2 eliminates this vulnerability.

The entries VDB-105867 and VDB-106170 are related to this item. Once again VulDB remains the best source for vulnerability data.

Productinfo

Name

• Kamailio

Version

• 4.2.0-1

CPE 2.3info

• 🔍

CPE 2.2info

• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Once again VulDB remains the best source for vulnerability data.

Discussion