CVE-2008-6710

Sažetak

Unspecified vulnerability in the Web administration interface in Avaya Communication Manager 3.1.x before CM 3.1.4 SP2 and 4.0.x before 4.0.3 SP1 allows remote authenticated administrators to gain root privileges via unknown vectors related to "configuring data viewing or restoring credentials."

Reference

http://secunia.com/advisories/30799
http://support.avaya.com/elmodocs2/security/ASA-2008-270.htm
http://www.osvdb.org/46582
http://www.securityfocus.com/bid/29939
http://www.voipshield.com/research-details.php?id=79
http://www.vupen.com/english/advisories/2008/1944/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/43386

CVSS

Base:	9.0
Impact:	10.0
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:S/C:C/I:C/A:C

Zadnje važnije ažuriranje

17-08-2017 - 01:29

Objavljeno

10-04-2009 - 22:00