[2/5] Avaya Products httpd Multiple Vulnerabilities

January 22nd, 2008 by

[2/5] Avaya Products httpd Multiple Vulnerabilities

:Avaya has acknowledged some vulnerabilities in various Avaya products, which can be exploited by malicious people to conduct cross-site scripting attacks.For more information:SA28046The vulnerabilities affect the following products and versions:* Avaya Communication Manager (CM 3.x, 4.x, 5.0)* Avaya Intuity AUDIX LX (IALX 2.0)* Avaya Messaging Storage Server (MSS 3.x)* Avaya Message Networking (MN 3.1)* Avaya CCS/SES (3.1.1 and newer)* Avaya Voice Portal (VP 4.0 and 4.1)* Avaya Meeting Exchange (MX 5.0)* Avaya Application Enablement Services (AES 4.0 and 4.1)Solution:The vendor recommends that local and network access to the affected systems be restricted until an update is available.Original Advisory:http://support.avaya.com/elmodocs2/security/ASA-2008-032.htmOther References:SA28046:http://secunia.com/advisories/28046/

Original post by kapil

[2/5] Avaya Products httpd Multiple Vulnerabilities

Related Articles:

[2/5] Avaya Products e2fsprogs Integer Overflow Vulnerabilities

[3/5] Avaya Products PCRE Regex Parsing Multiple Vulnerabilities

[4/5] Avaya Products CUPS “StreamPredictor” Multiple Vulnerabilities

[2/5] Avaya Products openssh Multiple Vulnerabilities

[3/5] Avaya Products PCRE Multiple Vulnerabilities

Posted in Advisories - Exploits | | [2/5] Avaya Products httpd Multiple Vulnerabilities

<< [3/5] IDMOS “fileName” Information Disclosure Vulnerability | [3/5] Interstage HTTP Server Multiple Vulnerabilities >>

Cybertrion Systems

[2/5] Avaya Products httpd Multiple Vulnerabilities

Categories

Archives:

Search:

Meta: