Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6574

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6574
Last Modified 02 Apr 2009 12:00:00
Published 01 Apr 2009 06:30:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6574

Summary

Unspecified vulnerability in SIP Enablement Services (SES) in Avaya Communication Manager 3.1.x and 4.x allows remote attackers to gain privileges and cause a denial of service via unknown vectors related to reuse of valid credentials.

Vulnerable Systems

Application

  • Avaya Communication Manager 3.1

  • Avaya Communication Manager 3.1.1

  • Avaya Communication Manager 3.1.2

  • Avaya Communication Manager 3.1.3

  • Avaya Communication Manager 3.1.4

  • Avaya Communication Manager 3.1.5

  • Avaya Communication Manager 4.0

  • Avaya Communication Manager 4.0.1

  • Avaya Communication Manager 4.0.3


References

XF - avaya-ses-unspecified-unauthorized-access(41734)

MISC - http://www.voipshield.com/research-details.php?id=24

BID - 28687

SECUNIA - 29744

OSVDB - 44288


Last Updated: 27 May 2016 10:49:14