[1/5] Avaya Products BusyBox MD5 Password Weakness

June 28th, 2007 by

[1/5] Avaya Products BusyBox MD5 Password Weakness

:Avaya has acknowledged a weakness in various Avaya products, which potentially can be exploited by malicious, local users to bypass certain security restrictions.For more information:SA19477The following products are affected:* Avaya Communication Manager (CM 2.x, 3.x, 4.x)* Avaya Messaging Storage Server (MSS 3.x)* Avaya Message Networking (all versions)* Avaya CCS/SES (all versions)* Avaya AES (AES 4.0)Solution:The vendor recommends that local and network access to the affected systems be restricted until an update is available.Original Advisory:http://support.avaya.com/elmodocs2/security/ASA-2007-250.htmOther References:SA19477:http://secunia.com/advisories/19477/

Original post by Pankaj

[1/5] Avaya Products BusyBox MD5 Password Weakness

Related Articles:

[2/5] Avaya Products sendmail Weakness

[4/5] Avaya Products OpenSSL Vulnerabilities

[2/5] Avaya Products file Integer Underflow Vulnerability

[2/5] Avaya Products Apache mod_proxy “date” Denial of Service

[2/5] Avaya Products tar Directory Traversal Vulnerability

Posted in Advisories - Exploits | | [1/5] Avaya Products BusyBox MD5 Password Weakness

<< [2/5] eTicket “open.php” Cross-Site Scripting | [3/5] Xerox ESS/ Network Controller OpenSSL Vulnerabilities >>

Cybertrion Systems

[1/5] Avaya Products BusyBox MD5 Password Weakness

Categories

Archives:

Search:

Meta: