Secunia
Login
|
|
|
|
|
|
|
|
|
Avaya Products PHP Multiple Vulnerabilities
Release Date: 2006-07-06 Views: 11,042
Secunia Advisory SA20951
Where:
From remote
Impact:
Security Bypass, Cross Site Scripting, Manipulation of data, Exposure of sensitive information, DoS, System access,
Solution Status:
Partial Fix
CVE Reference(s):
Description
Avaya has acknowledged some vulnerabilities in PHP included in various Avaya products, which can be exploited by malicious users to cause a DoS (Denial of Service) or compromise a vulnerable system, and by malicious people to conduct cross-site scripting attacks, to gain knowledge of potentially sensitive information, and to use PHP as an open mail relay.
For more information:
SA17062
SA17763
SA18431
SA19383
SA19599
The following products are affected:
* Avaya S87XX/S8500/S8300 (2.x versions)
* Avaya Intuity LX (all versions)
* Avaya Message Networking (all versions)
Solution:
Avaya S87XX/S8500/S8300:
Further details available to Secunia VIM customers
Original Advisory:
http://support.avaya.com/elmodocs2/security/ASA-2006-129.htm
Deep Links:
Links available to Secunia VIM customers
Do you have additional information related to this advisory?
Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this information to vuln@secunia.com
Subject: Avaya Products PHP Multiple Vulnerabilities
|
No posts yet |
|
You must be logged in to post a comment. |
