ScopServ Fix Vulnerability CVE-2014-1691

ScopServ Vulnerability CVE-2014-1691 January 26, 2015 Addendum

In addition to

If your installation cannot immediately and fully be upgraded as per the product bulletin.

You may use this minimal upgrade method to upgrade the required packages (but it highly recommended a full upgrade is performed):

From the Linux shell execute (without quotations) ‘scopserv_yum update scopserv scopserv-core scopserv-framework scopserv-server’

After all packages are successfully updated then from the Linux shell execute (without quotations) ‘service scopserv restart’

    • Related Articles

    • ScopServ Vulnerability CVE-2014-1691 January 26, 2015

      Scope: ScopServ, ScopTEL installations could be vulnerable to CVE-2014-1691. Description: Unsanitized variables are passed to the unserialize() PHP function. A remote attacker could specially-craft one of those variables allowing to load and execute ...
    • ScopTEL is not effected by CVE-2021-44228 log4j vulnerability

      ScopServ is aware of the Apache log4j vulnerability and has completed verification that this issue does not affect ScopTEL products or services. Log4j is a java addon, no ScopTEL code is written in Java. On December 9th 2021, Apache published a ...
    • CVE-2015-0235 Ghost Vulnerability

      Details: Updated glibc packages that fix one security issue are now available for ScopServ Distributions built on CentOS 5. Red Hat Product Security has rated this update as having Critical security ...
    • Enable Instant Messaging (XMPP) Service on ScopTEL PBX

      We will look at how to setup an Instant Messaging server on ScopTEL PBX using a free and open source XMPP based IM server. Openfire is a real time collaboration (RTC) server dual-licensed under the Open Source GPL and commercially. It uses the only ...
    • How to implement Skill Based Routing (ACD) on ScopTEL PBX

      Skills Based Routing Definition The following is the Wikipedia definition for Skills Based Routing: “Skills based routing (SBR) is a call assignment strategy used in call centers to assign incoming calls to the most suitable agent, rather than simply ...