Multiple unspecified vulnerabilities in the Web management interface in Avaya SIP Enablement Services (SES) 3.x and 4.0, as used with Avaya Communication Manager 3.1.x, allow remote attackers to obtain (1) application server configuration, (2) database server configuration including encrypted passwords, (3) a system utility that decrypts "subscriber table passwords," (4) a system utility that decrypts database passwords, and (5) a system utility that encrypts "subscriber table passwords."
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2009-04-10T15:00:00
Updated: 2024-08-07T11:41:59.544Z
Reserved: 2009-04-10T00:00:00
Link: CVE-2008-6706
Vulnrichment
No data.
NVD
Status : Modified
Published: 2009-04-10T22:00:00.640
Modified: 2024-11-21T00:57:15.670
Link: CVE-2008-6706
Redhat
No data.