CVE-2008-6708

Currently unrated

Key Information:

Vendor: Avaya
Status: Communication Manager; Sip Enablement Services
Vendor: CVE Published:; 10 April 2009

Summary

Unspecified vulnerability in the Web management interface in Avaya SIP Enablement Services (SES) 3.x and 4.0, as used with Avaya Communication Manager 3.1.x and 4.x, allows remote authenticated administrators to gain root privileges via unknown vectors related to configuration of "data viewing or restoring parameters."

References

http://www.vupen.com/english/advisories/2008/1943/references

vdb-entryx_refsource_VUPEN

http://secunia.com/advisories/30751

third-party-advisoryx_refsource_SECUNIA

http://support.avaya.com/elmodocs2/security/ASA-2008-268.htm

x_refsource_CONFIRM

Timeline

Vulnerability published
Apr 10, 2009
Vulnerability Reserved
Apr 10, 2009