CVE-2014-7235

EXPLOITED IN THE WILD

ARI Framework module/Asterisk Recording Interface (ARI) <2.9.0.9, <...

Title source: llm

Description

htdocs_ari/includes/login.php in the ARI Framework module/Asterisk Recording Interface (ARI) in FreePBX before 2.9.0.9, 2.10.x, and 2.11 before 2.11.1.5 allows remote attackers to execute arbitrary code via the ari_auth cookie, related to the PHP unserialize function, as exploited in the wild in September 2014.

Exploits (1)

exploitdb WORKING POC

by inj3ctor3 · textwebappsphp

https://www.exploit-db.com/exploits/41005

View Code ZIP pw:eip

References (7)

[Various Sources] http://community.freepbx.org/t/critical-freepbx-rce-vulnerability-all-versions-cve-2014-7235/24536

[Exploit, Third Party Advisory] http://packetstormsecurity.com/files/128516/FreePBX-Authentication-Bypass-Account-Creation.html

[Third Party Advisory] http://secunia.com/advisories/61601

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/96790

[Patch] https://github.com/FreePBX/fw_ari/commit/f294b4580ce725ca3c5e692d86e63d40cef4d836

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/70188

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/41005/

Scores

EPSS 0.5201

EPSS Percentile 97.9%

Details

VulnCheck KEV 2011-10-18

InTheWild.io 2019-12-10

CWE

CWE-94

Status published

Products (22)

freepbx/freepbx 2.10.0.0

freepbx/freepbx 2.10.0.1

freepbx/freepbx 2.10.0.2

freepbx/freepbx 2.10.0.3

freepbx/freepbx 2.10.0.4

freepbx/freepbx 2.10.0.5

freepbx/freepbx 2.10.0.6

freepbx/freepbx 2.10.0.7

freepbx/freepbx 2.10.0.8

freepbx/freepbx 2.10.0.9

... and 12 more

Published Oct 07, 2014

Tracked Since Feb 18, 2026