{"id":2216,"date":"2021-10-02T02:14:36","date_gmt":"2021-10-02T06:14:36","guid":{"rendered":"https:\/\/cyburdial.net\/?p=2216"},"modified":"2021-10-02T02:14:41","modified_gmt":"2021-10-02T06:14:41","slug":"security-vulnerability-in-vicidial-codebase-update-now","status":"publish","type":"post","link":"https:\/\/dialer.one\/index.php\/security-vulnerability-in-vicidial-codebase-update-now\/","title":{"rendered":"Security vulnerability in Vicidial codebase &#8211; Update now!"},"content":{"rendered":"\n<h1 class=\"wp-block-heading\">Security vulnerability in Vicidial codebase &#8211; Update now!<\/h1>\n\n\n\n<p>There is a major security hole in the vicidial codebase for any SVN version below 3509. Please see the email below.<\/p>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"426\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" src=\"https:\/\/dialer.one\/wp-content\/uploads\/2021\/10\/image.png\" alt=\"\" class=\"wp-image-2217\" title=\"\" srcset=\"https:\/\/dialer.one\/wp-content\/uploads\/2021\/10\/image.png 1024w, https:\/\/dialer.one\/wp-content\/uploads\/2021\/10\/image-600x250.png 600w, https:\/\/dialer.one\/wp-content\/uploads\/2021\/10\/image-300x125.png 300w, https:\/\/dialer.one\/wp-content\/uploads\/2021\/10\/image-768x320.png 768w, https:\/\/dialer.one\/wp-content\/uploads\/2021\/10\/image-500x208.png 500w, https:\/\/dialer.one\/wp-content\/uploads\/2021\/10\/image-800x333.png 800w\" \/><figcaption>Vicidial exploit<\/figcaption><\/figure><\/div>\n\n\n\n<p>Please make sure you update your SVN and your OS, to update your SVN run these commands:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>cd \/usr\/src\/astguiclient\/trunk<\/li><li>svn up<\/li><li>perl install.pl  (follow the prompts thru to the end)<\/li><li><strong>On DB server only run this command<\/strong>: mysql -p -f &#8211;database=asterisk &lt; \/usr\/src\/astguiclient\/trunk\/extras\/upgrade_2.14.sql<\/li><\/ul>\n\n\n\n<p><\/p>\n\n\n\n<p>To update your OS for Leap, use &#8220;zypper up&#8221; and for centos use &#8220;yum update&#8221;<\/p>\n\n\n\n<p><\/p>\n\n\n\n<p>Please take this seriously.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<p>Chris aka carpenox<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Security vulnerability in Vicidial codebase &#8211; Update now! There is a major security hole in the vicidial codebase for any SVN version below 3509. Please see the email below. Please make sure you update your SVN and your OS, to update your SVN run these commands: cd \/usr\/src\/astguiclient\/trunk svn up perl install.pl (follow the prompts [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"content-type":"","_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[],"tags":[],"class_list":["post-2216","post","type-post","status-publish","format-standard","hentry"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack-related-posts":[{"id":1512,"url":"https:\/\/dialer.one\/index.php\/how-to-update-your-vicidial-version-with-subversion\/","url_meta":{"origin":2216,"position":0},"title":"How to &#8211; Update your Vicidial version with subversion","author":"carpenox","date":"February 4, 2021","format":false,"excerpt":"The version number shows in the top right corner. Updating Vicidial This is a pretty simple process. Only a few commands needs to be run in order to update your vicidial\/cyburdial version via the Linux Command Line Interface(CLI) cd \/usr\/src\/astguiclient svn checkout svn:\/\/svn.eflo.net:3690\/agc_2-X\/trunk cd trunk perl install.pl Then you may\u2026","rel":"","context":"With 2 comments","block_context":{"text":"With 2 comments","link":"https:\/\/dialer.one\/index.php\/how-to-update-your-vicidial-version-with-subversion\/#comments"},"img":{"alt_text":"SVN Update","src":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2021\/02\/versionupdate.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2021\/02\/versionupdate.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2021\/02\/versionupdate.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2021\/02\/versionupdate.png?resize=700%2C400&ssl=1 2x"},"classes":[]},{"id":1527,"url":"https:\/\/dialer.one\/index.php\/useful-commands-to-manage-everyday-tasks-on-asterisk-vicidial-servers\/","url_meta":{"origin":2216,"position":1},"title":"Useful Commands to manage everyday tasks on Asterisk\/Vicidial Servers","author":"carpenox","date":"February 12, 2021","format":false,"excerpt":"Useful Commands to manage everyday tasks on Asterisk\/Vicidial Servers I wanted to put together a list of commands that I use often or daily that may help other people manage their days easier. If you have anything you use or think others would find useful, please comment below and I\u2026","rel":"","context":"In &quot;Vicidial&quot;","block_context":{"text":"Vicidial","link":"https:\/\/dialer.one\/index.php\/category\/vicidial\/"},"img":{"alt_text":"useful tools","src":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2021\/02\/image-4.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2021\/02\/image-4.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2021\/02\/image-4.png?resize=525%2C300&ssl=1 1.5x"},"classes":[]},{"id":2201,"url":"https:\/\/dialer.one\/index.php\/how-to-scratch-install-vicidial-on-ubuntu\/","url_meta":{"origin":2216,"position":2},"title":"How to &#8211; scratch install Vicidial on Ubuntu","author":"carpenox","date":"September 8, 2021","format":false,"excerpt":"How to - scratch install Vicidial on Ubuntu This article will go over how to scratch install Vicidial on Ubuntu 14 - 22 Step 1 - The Basics apt-get updateapt-get upgradeapt-get install apache2 -yapt-get install build-essential -yapt-get install mariadb-client-10.3 -yapt-get install mariadb-server -y apt-get install subversion libjansson-dev sqlite autoconf automake\u2026","rel":"","context":"In &quot;Vicidial&quot;","block_context":{"text":"Vicidial","link":"https:\/\/dialer.one\/index.php\/category\/vicidial\/"},"img":{"alt_text":"Realtime Report","src":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2021\/01\/realtime1.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2021\/01\/realtime1.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2021\/01\/realtime1.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2021\/01\/realtime1.png?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2021\/01\/realtime1.png?resize=1050%2C600&ssl=1 3x"},"classes":[]},{"id":1894,"url":"https:\/\/dialer.one\/index.php\/how-to-vicidial-scratch-install-on-centos-7\/","url_meta":{"origin":2216,"position":3},"title":"How to &#8211; Vicidial Scratch install on CentOS 7","author":"carpenox","date":"April 6, 2021","format":false,"excerpt":"How to - Vicidial Scratch install on CentOS 7 This is a complete guide for vicidial scratch installation on centos 7. It is assumed that you have freshly installed CentOS. Update OS\u00a0& Reboot yum -y update reboot Install Dependencies & Reboot yum -y install epel-release yum install -y kernel* yum\u2026","rel":"","context":"With 1 comment","block_context":{"text":"With 1 comment","link":"https:\/\/dialer.one\/index.php\/how-to-vicidial-scratch-install-on-centos-7\/#comments"},"img":{"alt_text":"vicidial scratch install centos","src":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2020\/08\/admin2.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2020\/08\/admin2.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2020\/08\/admin2.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2020\/08\/admin2.png?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2020\/08\/admin2.png?resize=1050%2C600&ssl=1 3x"},"classes":[]},{"id":3941,"url":"https:\/\/dialer.one\/index.php\/security-vulnerability-vicidial-svn-3754\/","url_meta":{"origin":2216,"position":4},"title":"Security Vulnerability &#8211; Vicidial SVN 3754","author":"carpenox","date":"November 21, 2023","format":false,"excerpt":"Security Vulnerability - Vicidial SVN 3754 There is a new security vulnerability in ViciDial for SVN versions 3754 and below. These are labeled as severe and need to be addressed immediately if you are below SVN 3755. You can do so by following this article: How to \u2013 Update your\u2026","rel":"","context":"In &quot;Vicidial&quot;","block_context":{"text":"Vicidial","link":"https:\/\/dialer.one\/index.php\/category\/vicidial\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2023\/11\/Screenshot_20231121-0757582.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2023\/11\/Screenshot_20231121-0757582.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2023\/11\/Screenshot_20231121-0757582.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2023\/11\/Screenshot_20231121-0757582.png?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2023\/11\/Screenshot_20231121-0757582.png?resize=1050%2C600&ssl=1 3x"},"classes":[]},{"id":1174,"url":"https:\/\/dialer.one\/index.php\/vicidial-error-code-expects-different-schema\/","url_meta":{"origin":2216,"position":5},"title":"How to &#8211; Fix the Vicidial error: Code Expects Different Schema","author":"carpenox","date":"October 18, 2020","format":false,"excerpt":"How to - Fix the Vicidial error: Code Expects Different Schema This is a pretty easy fix, \"Code Expects Different Schema\" occurs when you update your svn version but forget to update the db schema through mysql. The instructions are below. different schema After database dump restoration taken from older\u00a0Vicibox\u00a0to\u2026","rel":"","context":"With 1 comment","block_context":{"text":"With 1 comment","link":"https:\/\/dialer.one\/index.php\/vicidial-error-code-expects-different-schema\/#comments"},"img":{"alt_text":"different schema","src":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2020\/10\/dbschema.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2020\/10\/dbschema.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2020\/10\/dbschema.png?resize=525%2C300&ssl=1 1.5x"},"classes":[]}],"jetpack_likes_enabled":true,"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/posts\/2216","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/comments?post=2216"}],"version-history":[{"count":0,"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/posts\/2216\/revisions"}],"wp:attachment":[{"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/media?parent=2216"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/categories?post=2216"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/tags?post=2216"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}