Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6797

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2008-6797
Last Modified 08 May 2009 12:00:00
Published 07 May 2009 02:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6797

Summary

The server in Mitel NuPoint Messenger R11 and R3 sends usernames and passwords in cleartext to Exchange servers, which allows remote attackers to obtain sensitive information by sniffing the network.

Vulnerable Systems

Application

  • Mitel Nupoint Messenger R11

  • Mitel Nupoint Messenger R3


References

CERT-VN - VU#576996

BID - 34847

MISC - http://www.mitel.com/resources/NuPoint_and_Exchange.pdf


Last Updated: 27 May 2016 10:49:20