Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5710

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-5710
Last Modified 07 Mar 2011 10:15:02
Published 24 Dec 2008 01:29:15
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5710

Summary

Multiple unspecified vulnerabilities in the web management interface in Avaya Communication Manager (CM) 3.1.x, 4.0.3, and 5.x allow remote attackers to read (1) configuration files, (2) log files, (3) binary image files, and (4) help files via unknown vectors.

Vulnerable Systems

Application

  • Avaya Communication Manager 3.1

  • Avaya Communication Manager 3.1.1

  • Avaya Communication Manager 3.1.2

  • Avaya Communication Manager 3.1.3

  • Avaya Communication Manager 3.1.4

  • Avaya Communication Manager 3.1.5

  • Avaya Communication Manager 4.0.3

  • Avaya Communication Manager 5.0

  • Avaya Communication Manager 5.1

  • Avaya Communication Manager 5.1.1

  • Avaya Communication Manager 5.1.2


References

XF - avaya-cm-configuration-info-disclosure(45750)

VUPEN - ADV-2008-2774

MISC - http://www.voipshield.com/research-details.php?id=123

BID - 31639

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2008-394.htm

SECUNIA - 32035


Last Updated: 27 May 2016 10:48:54