CVE-2003-0779
SQL injection vulnerability in the Call Detail Record (CDR) logging functionality for Asterisk allows remote attackers to execute arbitrary SQL via a CallerID string.
Date published : 2003-09-12
http://www.atstake.com/research/advisories/2003/a091103-1.txt