Configuration and File Access Vulnerabilities in Avaya Communication Manager
CVE-2008-5710

Currently unrated

Key Information:

Vendor: Avaya
Status: Communication Manager
Vendor: CVE Published:; 24 December 2008

Summary

Multiple unspecified vulnerabilities in the web management interface of Avaya Communication Manager versions 3.1.x, 4.0.3, and 5.x allow remote attackers to compromise sensitive information. These vulnerabilities enable unauthorized access to crucial files, including configuration files, log files, binary image files, and help files, through yet-to-be-determined vectors. The impact of these vulnerabilities heightens the risk of unauthorized access to management settings and data, illustrating the critical need for robust security measures.

References

http://www.vupen.com/english/advisories/2008/2774

vdb-entryx_refsource_VUPEN

https://exchange.xforce.ibmcloud.com/vulnerabilities/45750

vdb-entryx_refsource_XF

http://secunia.com/advisories/32035

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Dec 24, 2008
Vulnerability Reserved
Dec 24, 2008