7.8
CVE-2008-6706
- EPSS 2.26%
- Veröffentlicht 10.04.2009 22:00:00
- Zuletzt bearbeitet 16.06.2026 23:02:48
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Multiple unspecified vulnerabilities in the Web management interface in Avaya SIP Enablement Services (SES) 3.x and 4.0, as used with Avaya Communication Manager 3.1.x, allow remote attackers to obtain (1) application server configuration, (2) database server configuration including encrypted passwords, (3) a system utility that decrypts "subscriber table passwords," (4) a system utility that decrypts database passwords, and (5) a system utility that encrypts "subscriber table passwords."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Avaya ≫ Sip Enablement Services Version3.0
Avaya ≫ Sip Enablement Services Version3.1
Avaya ≫ Sip Enablement Services Version3.1.1
Avaya ≫ Sip Enablement Services Version4.0
Avaya ≫ Communication Manager Version3.1
Avaya ≫ Communication Manager Version3.1.1
Avaya ≫ Communication Manager Version3.1.2
Avaya ≫ Communication Manager Version3.1.3
Avaya ≫ Communication Manager Version3.1.4
Avaya ≫ Communication Manager Version3.1.4 Updatesp1
Avaya ≫ Communication Manager Version3.1.4 Updatesp2
Avaya ≫ Communication Manager Version3.1.5
Avaya ≫ Communication Manager Version3.1.5 Updatesp0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.26% | 0.807 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 10 | 6.9 |
AV:N/AC:L/Au:N/C:C/I:N/A:N
|
http://osvdb.org/46602
http://secunia.com/advisories/30751
http://support.avaya.com/elmodocs2/security/ASA-2008-268.htm
http://www.securityfocus.com/bid/29939
http://www.voipshield.com/research-details.php?id=81
http://www.voipshield.com/research-details.php?id=82
http://www.voipshield.com/research-details.php?id=83
http://www.voipshield.com/research-details.php?id=84
http://www.voipshield.com/research-details.php?id=85
http://www.vupen.com/english/advisories/2008/1943/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/43382
https://exchange.xforce.ibmcloud.com/vulnerabilities/43383
https://exchange.xforce.ibmcloud.com/vulnerabilities/43387
https://exchange.xforce.ibmcloud.com/vulnerabilities/43388