Multiple unspecified vulnerabilities in the Web management interface in Avaya SIP Enablement Services (SES) 3.x and 4.0, as used with Avaya Communication Manager 3.1.x, allow remote attackers to obtain (1) application server configuration, (2) database server configuration including encrypted passwords, (3) a system utility that decrypts "subscriber table passwords," (4) a system utility that decrypts database passwords, and (5) a system utility that encrypts "subscriber table passwords."
References
Configurations
Configuration 1 (hide)
AND |
|
History
No history.
Information
Published : 2009-04-10 22:00
Updated : 2024-02-28 11:21
NVD link : CVE-2008-6706
Mitre link : CVE-2008-6706
CVE.ORG link : CVE-2008-6706
JSON object : View
Products Affected
avaya
- communication_manager
- sip_enablement_services
CWE