CVE-2008-5709

Multiple unspecified vulnerabilities in the web management interface in Avaya Communication Manager (CM) 3.1 before 3.1.4 SP2, 4.0 before 4.0.3 SP1, and 5.0 before 5.0 SP3 allow remote authenticated users to execute arbitrary code via unknown attack vectors in the (1) Set Static Routes and (2) Backup History components.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:avaya:communication_manager:3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:avaya:communication_manager:3.1.2:*:*:*:*:*:*:*
cpe:2.3:a:avaya:communication_manager:3.1.3:*:*:*:*:*:*:*
cpe:2.3:a:avaya:communication_manager:3.1.4:sp1:*:*:*:*:*:*
cpe:2.3:a:avaya:communication_manager:4.0:*:*:*:*:*:*:*
cpe:2.3:a:avaya:communication_manager:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:avaya:communication_manager:4.0.1:sp15215:*:*:*:*:*:*
cpe:2.3:a:avaya:communication_manager:4.0.1:sp15500:*:*:*:*:*:*
cpe:2.3:a:avaya:communication_manager:4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:avaya:communication_manager:5.0:*:*:*:*:*:*:*
cpe:2.3:a:avaya:communication_manager:5.0:sp1:*:*:*:*:*:*
cpe:2.3:a:avaya:communication_manager:5.0:sp2:*:*:*:*:*:*

History

No history.

Information

Published : 2008-12-24 18:29

Updated : 2024-02-28 11:21


NVD link : CVE-2008-5709

Mitre link : CVE-2008-5709

CVE.ORG link : CVE-2008-5709


JSON object : View

Products Affected

avaya

  • communication_manager
CWE
CWE-20

Improper Input Validation

NVD-CWE-noinfo