{"api_version":"1","generated_at":"2026-07-09T03:15:51+00:00","cve":"CVE-2010-1224","urls":{"html":"https://cve.report/CVE-2010-1224","api":"https://cve.report/api/cve/CVE-2010-1224.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2010-1224","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2010-1224"},"summary":{"title":"CVE-2010-1224","description":"main/acl.c in Asterisk Open Source 1.6.0.x before 1.6.0.25, 1.6.1.x before 1.6.1.17, and 1.6.2.x before 1.6.2.5 does not properly enforce remote host access controls when CIDR notation \"/0\" is used in permit= and deny= configuration rules, which causes an improper arithmetic shift and might allow remote attackers to bypass ACL rules and access services from unauthorized hosts.","state":"PUBLISHED","assigner":"mitre","published_at":"2010-04-01 21:30:00","updated_at":"2026-04-29 01:13:23"},"problem_types":["CWE-264","n/a"],"metrics":[{"version":"2.0","source":"nvd@nist.gov","type":"Primary","score":"4.3","severity":"","vector":"AV:N/AC:M/Au:N/C:N/I:P/A:N","data":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"}}],"references":[{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/56552","name":"https://exchange.xforce.ibmcloud.com/vulnerabilities/56552","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"IBM X-Force Exchange","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.2.diff","name":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.2.diff","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"],"title":"","mime":"text/x-diff","httpstatus":"200","archivestatus":"200"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-March/037679.html","name":"http://lists.fedoraproject.org/pipermail/package-announce/2010-March/037679.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"[SECURITY] Fedora 11 Update: asterisk-1.6.1.17-1.fc11","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://osvdb.org/62588","name":"http://osvdb.org/62588","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"","httpstatus":"-1","archivestatus":"0"},{"url":"http://secunia.com/advisories/38752","name":"http://secunia.com/advisories/38752","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"],"title":"Asterisk CIDR Host Access Rules Security Bypass - Advisories - Community","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securityfocus.com/bid/38424","name":"http://www.securityfocus.com/bid/38424","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Asterisk CIDR Notation in Access Rule Remote Security Bypass Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"http://www.securityfocus.com/archive/1/509757/100/0/threaded","name":"http://www.securityfocus.com/archive/1/509757/100/0/threaded","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"SecurityFocus","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.vupen.com/english/advisories/2010/0475","name":"http://www.vupen.com/english/advisories/2010/0475","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"],"title":"Webmail : Solution de messagerie professionnelle - OVHcloud- OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/39096","name":"http://secunia.com/advisories/39096","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Fedora update for asterisk - Advisories - Community","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.1.diff","name":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.1.diff","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"text/x-diff","httpstatus":"200","archivestatus":"200"},{"url":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.0.diff","name":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.0.diff","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"text/x-diff","httpstatus":"200","archivestatus":"200"},{"url":"http://downloads.asterisk.org/pub/security/AST-2010-003.html","name":"http://downloads.asterisk.org/pub/security/AST-2010-003.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"AST-2010-003","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2010-1224","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2010-1224","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"n/a","product":"n/a","version":"affected n/a","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.10","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.12","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.13","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.14","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.15","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.16","cpe7":"rc1","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.16","cpe7":"rc2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.17","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.18","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.18","cpe7":"rc1","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.18","cpe7":"rc2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.18","cpe7":"rc3","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.19","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.20","cpe7":"rc1","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.21","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.21","cpe7":"rc1","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.22","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.23","cpe7":"rc2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.24","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.3","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.6","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.7","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.8","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.0.9","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.10","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.10","cpe7":"rc1","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.10","cpe7":"rc2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.10","cpe7":"rc3","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.11","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.12","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.12","cpe7":"rc1","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.13","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.13","cpe7":"rc1","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.14","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.15","cpe7":"rc2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.16","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.4","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.6","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.7","cpe7":"rc1","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.7","cpe7":"rc2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.8","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.1.9","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.2.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.2.0","cpe7":"rc2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.2.0","cpe7":"rc3","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.2.0","cpe7":"rc4","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.2.0","cpe7":"rc5","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.2.0","cpe7":"rc6","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.2.0","cpe7":"rc7","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.2.0","cpe7":"rc8","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.2.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.2.1","cpe7":"rc1","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.2.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.2.3","cpe7":"rc2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"1224","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"digium","cpe5":"asterisk","cpe6":"1.6.2.4","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-07T01:14:06.690Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"name":"20100225 AST-2010-003: Invalid parsing of ACL rules can compromise security","tags":["mailing-list","x_refsource_BUGTRAQ","x_transferred"],"url":"http://www.securityfocus.com/archive/1/509757/100/0/threaded"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://downloads.asterisk.org/pub/security/AST-2010-003.html"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.2.diff"},{"name":"39096","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/39096"},{"name":"FEDORA-2010-3724","tags":["vendor-advisory","x_refsource_FEDORA","x_transferred"],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-March/037679.html"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.0.diff"},{"name":"ADV-2010-0475","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2010/0475"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.1.diff"},{"name":"62588","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/62588"},{"name":"asterisk-cidr-security-bypass(56552)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/56552"},{"name":"38424","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/38424"},{"name":"38752","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/38752"}],"title":"CVE Program Container"}],"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2010-02-25T00:00:00.000Z","descriptions":[{"lang":"en","value":"main/acl.c in Asterisk Open Source 1.6.0.x before 1.6.0.25, 1.6.1.x before 1.6.1.17, and 1.6.2.x before 1.6.2.5 does not properly enforce remote host access controls when CIDR notation \"/0\" is used in permit= and deny= configuration rules, which causes an improper arithmetic shift and might allow remote attackers to bypass ACL rules and access services from unauthorized hosts."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2018-10-10T18:57:01.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"name":"20100225 AST-2010-003: Invalid parsing of ACL rules can compromise security","tags":["mailing-list","x_refsource_BUGTRAQ"],"url":"http://www.securityfocus.com/archive/1/509757/100/0/threaded"},{"tags":["x_refsource_CONFIRM"],"url":"http://downloads.asterisk.org/pub/security/AST-2010-003.html"},{"tags":["x_refsource_CONFIRM"],"url":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.2.diff"},{"name":"39096","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/39096"},{"name":"FEDORA-2010-3724","tags":["vendor-advisory","x_refsource_FEDORA"],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-March/037679.html"},{"tags":["x_refsource_CONFIRM"],"url":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.0.diff"},{"name":"ADV-2010-0475","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2010/0475"},{"tags":["x_refsource_CONFIRM"],"url":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.1.diff"},{"name":"62588","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/62588"},{"name":"asterisk-cidr-security-bypass(56552)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/56552"},{"name":"38424","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/38424"},{"name":"38752","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/38752"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2010-1224","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"main/acl.c in Asterisk Open Source 1.6.0.x before 1.6.0.25, 1.6.1.x before 1.6.1.17, and 1.6.2.x before 1.6.2.5 does not properly enforce remote host access controls when CIDR notation \"/0\" is used in permit= and deny= configuration rules, which causes an improper arithmetic shift and might allow remote attackers to bypass ACL rules and access services from unauthorized hosts."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"20100225 AST-2010-003: Invalid parsing of ACL rules can compromise security","refsource":"BUGTRAQ","url":"http://www.securityfocus.com/archive/1/509757/100/0/threaded"},{"name":"http://downloads.asterisk.org/pub/security/AST-2010-003.html","refsource":"CONFIRM","url":"http://downloads.asterisk.org/pub/security/AST-2010-003.html"},{"name":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.2.diff","refsource":"CONFIRM","url":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.2.diff"},{"name":"39096","refsource":"SECUNIA","url":"http://secunia.com/advisories/39096"},{"name":"FEDORA-2010-3724","refsource":"FEDORA","url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-March/037679.html"},{"name":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.0.diff","refsource":"CONFIRM","url":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.0.diff"},{"name":"ADV-2010-0475","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2010/0475"},{"name":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.1.diff","refsource":"CONFIRM","url":"http://downloads.asterisk.org/pub/security/AST-2010-003-1.6.1.diff"},{"name":"62588","refsource":"OSVDB","url":"http://osvdb.org/62588"},{"name":"asterisk-cidr-security-bypass(56552)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/56552"},{"name":"38424","refsource":"BID","url":"http://www.securityfocus.com/bid/38424"},{"name":"38752","refsource":"SECUNIA","url":"http://secunia.com/advisories/38752"}]}}}},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2010-1224","datePublished":"2010-04-01T21:00:00.000Z","dateReserved":"2010-04-01T00:00:00.000Z","dateUpdated":"2024-08-07T01:14:06.690Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"},"nvd":{"publishedDate":"2010-04-01 21:30:00","lastModifiedDate":"2026-04-29 01:13:23","problem_types":["CWE-264","n/a"],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0:*:*:*:*:*:*:*","matchCriteriaId":"B8374B5D-DE7A-4C3C-A5FE-579B17006A54"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.1:*:*:*:*:*:*:*","matchCriteriaId":"4225252F-5960-4A42-A575-00C125860E89"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.2:*:*:*:*:*:*:*","matchCriteriaId":"A65D76A8-BBDD-4BDE-B789-D745C400DCBE"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.3:*:*:*:*:*:*:*","matchCriteriaId":"A8B0F5A5-4252-4A9C-B830-2419E87AE5A0"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.5:*:*:*:*:*:*:*","matchCriteriaId":"9E8EF2D7-371B-4268-989E-25225CC1F7B6"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.6:*:*:*:*:*:*:*","matchCriteriaId":"ABAC4CE9-1CFA-4279-B0CE-18F3C6FB9AB3"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.7:*:*:*:*:*:*:*","matchCriteriaId":"E16E37A0-F739-4EEE-A1BB-EBC558C62767"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.8:*:*:*:*:*:*:*","matchCriteriaId":"DF0E2562-D0FC-404C-B725-617AEEF20AB8"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.9:*:*:*:*:*:*:*","matchCriteriaId":"C831EC2A-C99D-4FB1-8E5C-2FF685792F2B"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.10:*:*:*:*:*:*:*","matchCriteriaId":"F37C4158-6C4E-448D-929B-288480748289"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.12:*:*:*:*:*:*:*","matchCriteriaId":"5FBC113E-6304-4605-B024-D6D7A264DC9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.13:*:*:*:*:*:*:*","matchCriteriaId":"CC3FCBAE-2A39-482A-ADF9-870DF63F89D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.14:*:*:*:*:*:*:*","matchCriteriaId":"57325096-F4D8-4146-A6FD-93219F2C72D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.15:*:*:*:*:*:*:*","matchCriteriaId":"648639A2-26C4-4EDA-A982-25D400836696"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.16:rc1:*:*:*:*:*:*","matchCriteriaId":"37DE011D-1C1B-46AC-9265-F82693CE3C9A"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.16:rc2:*:*:*:*:*:*","matchCriteriaId":"790BF14A-0193-4A5C-802B-D82200B22342"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.17:*:*:*:*:*:*:*","matchCriteriaId":"D552F2D3-EB70-413E-8C4F-DD3283434C7C"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.18:*:*:*:*:*:*:*","matchCriteriaId":"15C4C10F-BD36-491A-87E7-2F072796DA33"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.18:rc1:*:*:*:*:*:*","matchCriteriaId":"929EAA61-BA69-4F36-A5E9-B8F066405384"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.18:rc2:*:*:*:*:*:*","matchCriteriaId":"E60A7436-AFDB-4540-BD4B-01F25BDFBA3F"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.18:rc3:*:*:*:*:*:*","matchCriteriaId":"5A1CCA12-CCF2-46F5-BBDD-AAC0C1E8C5FB"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.19:*:*:*:*:*:*:*","matchCriteriaId":"AB1D4D06-9D83-495F-98BC-0B6E1C3566B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.20:rc1:*:*:*:*:*:*","matchCriteriaId":"8D8A87FD-EB9C-4D65-824A-159C206F28FE"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.21:*:*:*:*:*:*:*","matchCriteriaId":"55585411-9272-4ED6-962C-B27EBAE11C76"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.21:rc1:*:*:*:*:*:*","matchCriteriaId":"DF7BDB9D-403D-4BC4-83FA-AD39EF131714"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.22:*:*:*:*:*:*:*","matchCriteriaId":"7F74046A-9B96-4EE7-AC14-F2A1FBDF65E0"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.23:rc2:*:*:*:*:*:*","matchCriteriaId":"512545F1-F007-43D7-AAE9-8120BC5821D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.0.24:*:*:*:*:*:*:*","matchCriteriaId":"339BEF35-835E-4B06-B9B4-C2DF26A7B3B2"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1:*:*:*:*:*:*:*","matchCriteriaId":"DBFF2686-0F5C-4F20-AA93-6B63C5ADCD82"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.1:*:*:*:*:*:*:*","matchCriteriaId":"759221D5-FC37-446D-9628-233B8D0B9120"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.2:*:*:*:*:*:*:*","matchCriteriaId":"F82D4812-0429-42D4-BD27-C76CB9E7C368"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.4:*:*:*:*:*:*:*","matchCriteriaId":"5D1FBCC8-4637-4A67-BFFD-C052C3C03C12"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.5:*:*:*:*:*:*:*","matchCriteriaId":"F7307E10-9FA5-4940-B837-7936384F61DD"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.6:*:*:*:*:*:*:*","matchCriteriaId":"DBBD0747-F3FF-46D8-A3C4-8268E37BC5AE"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.7:rc1:*:*:*:*:*:*","matchCriteriaId":"3F759F27-008E-47FB-AC0A-EF11DA19918E"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.7:rc2:*:*:*:*:*:*","matchCriteriaId":"D15C82BA-BD1F-4A19-A907-E6C30042F537"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.8:*:*:*:*:*:*:*","matchCriteriaId":"2E802481-C8BD-4218-8CDC-5DB112DA946C"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.9:*:*:*:*:*:*:*","matchCriteriaId":"D6FC8A53-E3C0-4660-BE75-2B5B8B4F8160"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.10:*:*:*:*:*:*:*","matchCriteriaId":"93C020CD-D0EA-4B3E-B33C-F900B08B28FE"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.10:rc1:*:*:*:*:*:*","matchCriteriaId":"0004AADE-1652-4242-A97D-E9818FE03CCF"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.10:rc2:*:*:*:*:*:*","matchCriteriaId":"543E9C91-60FE-43AE-9B94-08DD730BA814"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.10:rc3:*:*:*:*:*:*","matchCriteriaId":"252849FA-F46E-4F5A-A488-AA53574CA884"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.11:*:*:*:*:*:*:*","matchCriteriaId":"9EB89B4F-9546-4DF0-B69F-1B9F289BB1E6"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.12:*:*:*:*:*:*:*","matchCriteriaId":"2E254415-1D59-4A77-80FB-AE3EF10FBB32"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.12:rc1:*:*:*:*:*:*","matchCriteriaId":"DF2407D0-C324-45C4-9FBB-4294F747DBDC"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.13:*:*:*:*:*:*:*","matchCriteriaId":"F23A36CC-9AA2-4559-946D-6D0621664342"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.13:rc1:*:*:*:*:*:*","matchCriteriaId":"89C40652-E180-416A-B88A-E6313530E98A"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.14:*:*:*:*:*:*:*","matchCriteriaId":"A28C2C5D-A573-4036-A600-BE28A3E417B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.15:rc2:*:*:*:*:*:*","matchCriteriaId":"EE162390-359F-4C5D-902B-275FB1FC3EF2"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.1.16:*:*:*:*:*:*:*","matchCriteriaId":"4A0A3750-0D34-4FB5-B897-17CA0D0B7CE7"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.2.0:*:*:*:*:*:*:*","matchCriteriaId":"1F8B700A-FACB-4BC8-9DF2-972DC63D852B"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.2.0:rc2:*:*:*:*:*:*","matchCriteriaId":"FFD31B9B-2F43-4637-BE56-47A807384BF3"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.2.0:rc3:*:*:*:*:*:*","matchCriteriaId":"E6450D6B-C907-49E6-9788-E4029C09285F"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.2.0:rc4:*:*:*:*:*:*","matchCriteriaId":"DDB0432E-024A-4C0C-87FF-448E513D2834"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.2.0:rc5:*:*:*:*:*:*","matchCriteriaId":"D6A6A343-FEA2-49E5-9858-455AE3B29470"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.2.0:rc6:*:*:*:*:*:*","matchCriteriaId":"D57B94E3-EA37-466C-ADC4-5180D4502FDD"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.2.0:rc7:*:*:*:*:*:*","matchCriteriaId":"64D35A89-6B21-4770-AA0F-424C5C91A254"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.2.0:rc8:*:*:*:*:*:*","matchCriteriaId":"14817302-A34A-4980-B148-AEB4B3B49BE3"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.2.1:*:*:*:*:*:*:*","matchCriteriaId":"61FDFA96-E62A-413B-9846-F51F1F7349EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.2.1:rc1:*:*:*:*:*:*","matchCriteriaId":"DA924386-49F6-4371-B975-B1473EEA12F0"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.2.2:*:*:*:*:*:*:*","matchCriteriaId":"B74A1B99-8901-4690-B994-1DAD3EFA5ABB"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.2.3:rc2:*:*:*:*:*:*","matchCriteriaId":"4253C7DD-3588-4B35-B96D-C027133BE93F"},{"vulnerable":true,"criteria":"cpe:2.3:a:digium:asterisk:1.6.2.4:*:*:*:*:*:*:*","matchCriteriaId":"24AE11DB-16D3-42BF-BC64-E8982107D35B"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2010","CveId":"1224","Ordinal":"1","Title":"CVE-2010-1224","CVE":"CVE-2010-1224","Year":"2010"},"notes":[{"CveYear":"2010","CveId":"1224","Ordinal":"1","NoteData":"main/acl.c in Asterisk Open Source 1.6.0.x before 1.6.0.25, 1.6.1.x before 1.6.1.17, and 1.6.2.x before 1.6.2.5 does not properly enforce remote host access controls when CIDR notation \"/0\" is used in permit= and deny= configuration rules, which causes an improper arithmetic shift and might allow remote attackers to bypass ACL rules and access services from unauthorized hosts.","Type":"Description","Title":"CVE-2010-1224"},{"CveYear":"2010","CveId":"1224","Ordinal":"2","NoteData":"2010-04-01","Type":"Other","Title":"Published"},{"CveYear":"2010","CveId":"1224","Ordinal":"3","NoteData":"2018-10-10","Type":"Other","Title":"Modified"}]}}}