Description: Avaya has acknowledged a vulnerability in various Avaya products, which potentially can be exploited to conduct cross-site scripting attacks.
The vulnerability affects the following products and versions:
* Avaya Messaging Storage Server (3.x)
* Intuity AUDIX LX (2.0)
* Avaya Messaging Networking (3.1)
Solution: The vendor recommends that local and network access to the affected systems be restricted until an update is available.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
