Avaya Intuity Audix Two OpenSSH Security Issues - Advisories

Avaya Intuity Audix Two OpenSSH Security Issues

Secunia Advisory:	SA18661
Release Date:	2006-01-31

Critical:	Less critical
Impact:	Security Bypass Privilege escalation
Where:	From remote
Solution Status:	Unpatched

OS:	Avaya Intuity Audix R5


CVE reference:	CVE-2005-2797 (Secunia mirror) CVE-2005-2798 (Secunia mirror)

	This advisory is currently marked as unpatched! - Companies can be alerted when a patch is released!

Description: Avaya has acknowledged two security issues in Intuity Audix, which can be exploited malicious users to gain escalated privileges or bypass certain security restrictions. For more information: SA18010 The security issues have been reported in Intuity Audix R5.x. Solution: The vendor recommends that local and network access to the affected systems should be restricted until an update is available. Original Advisory: http://support.avaya.com/elmodocs2/security/ASA-2006-033.htm Other References: SA18010: http://secunia.com/advisories/18010/



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

8 Related Secunia Security Advisories

1. Avaya Intuity Audix OpenSSL Potential SSL 2.0 Rollback

Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	HP-UX update for Apache

2.	Red Hat Directory Server Multiple Vulnerabilities

3.	OpenOffice "rtl_allocateMe mory()" Truncation Vulnerability

4.	Tiger "genmsgidx" Insecure Temporary Files

5.	Citadel "migrate_aliase s.sh" Insecure Temporary Files

6.	Honeyd "test.sh" Insecure Temporary Files

7.	R "javareconf" Insecure Temporary Files

8.	Red Hat Directory Server Denial of Service Vulnerabilities

9.	Ampache "gather-message s.sh" Insecure Temporary Files

10.	Quick Poll "id" SQL Injection Vulnerability