Command Execution Vulnerability in Avaya Communication Manager
CVE-2008-6711

Currently unrated

Key Information:

Vendor: Avaya
Status: Communication Manager
Vendor: CVE Published:; 10 April 2009

Summary

An unspecified command execution vulnerability exists in the web administration interface of Avaya Communication Manager. This flaw allows remote authenticated users to execute arbitrary commands by exploiting unaddressed vectors while accessing system logs. Malicious actors can potentially leverage this vulnerability to gain unauthorized control or access crucial system functions, thereby posing significant security risks to organizational IT infrastructure.

References

http://www.vupen.com/english/advisories/2008/1944/references

vdb-entryx_refsource_VUPEN

http://secunia.com/advisories/30799

third-party-advisoryx_refsource_SECUNIA

http://www.voipshield.com/research-details.php?id=80

x_refsource_MISC

Timeline

Vulnerability published
Apr 10, 2009
Vulnerability Reserved
Apr 10, 2009