[2/5] Avaya Products mod_perl “path_info” Denial of Service Vulnerability

July 31st, 2007 by

[2/5] Avaya Products mod_perl “path_info” Denial of Service Vulnerability

:Avaya has acknowledged a vulnerability in various Avaya products, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).For more information:SA24678The following products are affected:* Avaya Communication Manager (CM 2.x and CM 3.0)* Avaya Intuity LX (all versions)* Avaya EMMC (1.017)* Avaya Messaging Storage Server (all versions)* Avaya Message Networking (all versions)NOTE: mod_perl is installed but not actively in use by these products.Solution:Avaya Communication Manager:Update to Avaya Communication Manager 3.1 or later.Avaya Intuity LX, EMMC, Messaging Storage Server, Message Networking:The vendor recommends that local and network access to the affected systems be restricted until an update is available.Original Advisory:http://support.avaya.com/elmodocs2/security/ASA-2007-293.htmOther References:SA24678:http://secunia.com/advisories/24678/

Original post by manisha

[2/5] Avaya Products mod_perl “path_info” Denial of Service Vulnerability

Related Articles:

[2/5] Avaya Products Apache mod_proxy “date” Denial of Service

[3/5] Avaya Products Cyrus SASL DIGEST-MD5 Pre-Authentication Denial of Service

[1/5] Avaya Products vixie-cron Local Denial of Service

[3/5] Avaya Products nfs-utils-lib Denial of Service

[1/5] Avaya Products Apache Multi-Processing Module Denial of Service

Posted in Advisories - Exploits | | [2/5] Avaya Products mod_perl “path_info” Denial of Service Vulnerability

<< [3/5] Mozilla Products Addon Chrome-Loaded “about:blank” Cross-Context Scripting | [3/5] KDE and KOffice “StreamPredictor::StreamPredictor()” Integer Overflow >>

Cybertrion Systems

[2/5] Avaya Products mod_perl “path_info” Denial of Service Vulnerability

Categories

Archives:

Search:

Meta: