Secunia Logo  
 Vulnerability InformationVulnerability ScanningCommunityBlog - new entry!Corporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Information > Secunia Advisories > Advisories by Product > Avaya Call Management System (CMS)
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About


Secunia PSI WorldMap 		 
Vulnerability Report: Avaya Call Management System (CMS)
This vulnerability report for Avaya Call Management System (CMS) contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.

If you have information about a new or an existing vulnerability in Avaya Call Management System (CMS) then you are more than welcome to contact us.


Table of Contents

1. Product Summary Only

2. Secunia Advisory Statistics (All time)
2.1. Statistics for 2009
2.2. Statistics for 2008
2.3. Statistics for 2007
2.4. Statistics for 2006
2.5. Statistics for 2005
2.6. Statistics for 2004
2.7. Statistics for 2003

3. List of Secunia Advisories (All time)
3.1. List for 2009
3.2. List for 2008
3.3. List for 2007
3.4. List for 2006
3.5. List for 2005
3.6. List for 2004
3.7. List for 2003

4. Send Feedback
 
Vendor, Links, and Unpatched Vulnerabilities

Vendor Avaya

Product Link View Here (Link to external site)

Affected By 99 Secunia advisories
141 Vulnerabilities

Monitor Product Receive alerts for this product

Unpatched 63% (62 of 99 Secunia advisories)

Most Critical Unpatched
The most severe unpatched Secunia advisory affecting Avaya Call Management System (CMS), with all vendor patches applied, is rated Highly critical .




25 Secunia Advisories in 2008
Secunia has issued a total of 25 Secunia advisories in 2008 for Avaya Call Management System (CMS). Currently, 76% (19 out of 25) are marked as unpatched with the most severe being rated Moderately critical

More information about the specific Secunia advisories affecting Avaya Call Management System (CMS) can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.



Avaya CMS Solaris SSH CBC Mode Plaintext Recovery Vulnerability
Unpatched. Secunia Advisory 1 of 25 in 2008. 1,639 views.
Release Date:
2008-12-26		 Secunia Advisory ID:
SA33308		 Solution Status:
Unpatched
Criticality:
 Impact:
Exposure of sensitive information
 Where:
From local network
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS, which potentially can be exploited by malicious people to disclose sensitive information. [Read More]

Avaya CMS Solaris "libICE" Denial of Service Vulnerability
Unpatched. Secunia Advisory 2 of 25 in 2008. 1,402 views.
Release Date:
2008-12-26		 Secunia Advisory ID:
SA33325		 Solution Status:
Unpatched
Criticality:
 Impact:
DoS
 Where:
From local network
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]

Avaya CMS Solaris Kerberos Credential Renewal Denial of Service
Vendor Patch. Secunia Advisory 3 of 25 in 2008. 1,443 views.
Release Date:
2008-12-26		 Secunia Advisory ID:
SA33313		 Solution Status:
Vendor Patch
Criticality:
 Impact:
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]

Avaya CMS / IR Java JRE Zip Archive Parsing Vulnerability
Unpatched. Secunia Advisory 4 of 25 in 2008. 1,063 views.
Release Date:
2008-12-22		 Secunia Advisory ID:
SA33242		 Solution Status:
Unpatched
Criticality:
 Impact:
Exposure of sensitive information
 Where:
From remote
Short Description:
Avaya has acknowledged a vulnerability in various Avaya products, which can be exploited by malicious people to disclose sensitive information. [Read More]

Avaya CMS Sun Java JDK / JRE Multiple Vulnerabilities
Unpatched. Secunia Advisory 5 of 25 in 2008. 2,015 views.
Release Date:
2008-12-16		 Secunia Advisory ID:
SA33187		 Solution Status:
Unpatched
Criticality:
 Impact:
Security Bypass
System access
 Where:
From remote
Short Description:
Avaya has acknowledged some vulnerabilities in Avaya CMS, which can be exploited by malicious people to bypass certain security restrictions or compromise a vulnerable system. [Read More]

Avaya CMS Solaris "sadmind" Buffer Overflow Vulnerability
Unpatched. Secunia Advisory 6 of 25 in 2008. 2,020 views.
Release Date:
2008-11-21		 Secunia Advisory ID:
SA32812		 Solution Status:
Unpatched
Criticality:
 Impact:
System access
 Where:
From local network
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious people to compromise a vulnerable system. [Read More]

Avaya CMS Solaris Editors Tag File Handling Privilege Escalation
Unpatched. Secunia Advisory 7 of 25 in 2008. 1,639 views.
Release Date:
2008-10-03		 Secunia Advisory ID:
SA31907		 Solution Status:
Unpatched
Criticality:
 Impact:
Privilege escalation
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious, local users to gain escalated privileges. [Read More]

Avaya CMS Solaris ACL for UFS File Systems Local Denial of Service
Unpatched. Secunia Advisory 8 of 25 in 2008. 1,889 views.
Release Date:
2008-10-03		 Secunia Advisory ID:
SA32125		 Solution Status:
Unpatched
Criticality:
 Impact:
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]

Avaya CMS Solaris namefs Kernel Module Privilege Escalation
Unpatched. Secunia Advisory 9 of 25 in 2008. 2,279 views.
Release Date:
2008-08-20		 Secunia Advisory ID:
SA31536		 Solution Status:
Unpatched
Criticality:
 Impact:
Privilege escalation
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to gain escalated privileges. [Read More]

Avaya CMS Solaris "snoop" Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 10 of 25 in 2008. 2,532 views.
Release Date:
2008-08-20		 Secunia Advisory ID:
SA31535		 Solution Status:
Vendor Patch
Criticality:
 Impact:
System access
 Where:
From remote
Short Description:
Avaya has acknowledged some vulnerabilities in Avaya CMS, which can be exploited by malicious people to compromise a user's system. [Read More]

Avaya CMS Solaris "picld" Denial of Service
Vendor Patch. Secunia Advisory 11 of 25 in 2008. 2,196 views.
Release Date:
2008-08-20		 Secunia Advisory ID:
SA31501		 Solution Status:
Vendor Patch
Criticality:
 Impact:
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]

Avaya CMS Sun Java JDK / JRE Same Origin Policy Bypass
Unpatched. Secunia Advisory 12 of 25 in 2008. 2,595 views.
Release Date:
2008-07-28		 Secunia Advisory ID:
SA31269		 Solution Status:
Unpatched
Criticality:
 Impact:
Security Bypass
 Where:
From remote
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious people to bypass certain security restrictions. [Read More]

Avaya CMS / IR Solaris X Server Extensions Multiple Vulnerabilities
Vendor Workaround. Secunia Advisory 13 of 25 in 2008. 2,831 views.
Release Date:
2008-07-01		 Secunia Advisory ID:
SA30843		 Solution Status:
Vendor Workaround
Criticality:
 Impact:
Exposure of sensitive information
Privilege escalation
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged some vulnerabilities in Avaya CMS / IR, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges. [Read More]

Avaya CMS Solaris "inet_network()" Off-By-One Vulnerability
Unpatched. Secunia Advisory 14 of 25 in 2008. 2,240 views.
Release Date:
2008-06-16		 Secunia Advisory ID:
SA30718		 Solution Status:
Unpatched
Criticality:
 Impact:
DoS
System access
 Where:
From remote
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system. [Read More]

Avaya CMS Solaris crontab Privilege Escalation Vulnerability
Unpatched. Secunia Advisory 15 of 25 in 2008. 2,646 views.
Release Date:
2008-06-05		 Secunia Advisory ID:
SA30542		 Solution Status:
Unpatched
Criticality:
 Impact:
Privilege escalation
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious, local users to gain escalated privileges. [Read More]

Avaya CMS Solaris Print Service Unspecified Vulnerabilities
Unpatched. Secunia Advisory 16 of 25 in 2008. 2,020 views.
Release Date:
2008-06-02		 Secunia Advisory ID:
SA30473		 Solution Status:
Unpatched
Criticality:
 Impact:
System access
 Where:
From local network
Short Description:
Avaya has acknowledged some vulnerabilities in Avaya CMS, which can be exploited by malicious people to compromise a vulnerable system. [Read More]

Avaya CMS Solaris TCP Implementation SYN Flood Denial of Service
Unpatched. Secunia Advisory 17 of 25 in 2008. 2,708 views.
Release Date:
2008-05-21		 Secunia Advisory ID:
SA30125		 Solution Status:
Unpatched
Criticality:
 Impact:
DoS
 Where:
From remote
Short Description:
Avaya has acknowledged a vulnerability in CMS, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]

Avaya CMS Solaris SSH X11 Forwarding Vulnerability
Unpatched. Secunia Advisory 18 of 25 in 2008. 2,654 views.
Release Date:
2008-05-14		 Secunia Advisory ID:
SA30230		 Solution Status:
Unpatched
Criticality:
 Impact:
Exposure of sensitive information
Privilege escalation
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in CMS, which can be exploited by malicious, local users to disclose sensitive information or potentially perform actions with escalated privileges. [Read More]

Avaya CMS Solaris Self Encapsulated IP Packets Vulnerability
Unpatched. Secunia Advisory 19 of 25 in 2008. 4,556 views.
Release Date:
2008-04-23		 Secunia Advisory ID:
SA29817		 Solution Status:
Unpatched
Criticality:
 Impact:
DoS
 Where:
From local network
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]

Avaya CMS Solaris Firewall Security Bypass and Denial of Service
Vendor Patch. Secunia Advisory 20 of 25 in 2008. 4,552 views.
Release Date:
2008-03-17		 Secunia Advisory ID:
SA29379		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Security Bypass
DoS
 Where:
From remote
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious people to bypass certain security restrictions and cause a DoS (Denial of Service). [Read More]

Avaya CMS Solaris X Window System Information Disclosure
Unpatched. Secunia Advisory 21 of 25 in 2008. 4,496 views.
Release Date:
2008-02-19		 Secunia Advisory ID:
SA28997		 Solution Status:
Unpatched
Criticality:
 Impact:
Exposure of sensitive information
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious, local users to disclose potentially sensitive information. [Read More]

Avaya CMS Sun Solaris X Window System and X Server Vulnerabilities
Unpatched. Secunia Advisory 22 of 25 in 2008. 4,991 views.
Release Date:
2008-02-14		 Secunia Advisory ID:
SA28941		 Solution Status:
Unpatched
Criticality:
 Impact:
Privilege escalation
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged some vulnerabilities in Avaya CMS, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to gain escalated privileges. [Read More]

Avaya Products Libxml2 UTF-8 Parsing Denial of Service
Unpatched. Secunia Advisory 23 of 25 in 2008. 3,106 views.
Release Date:
2008-02-04		 Secunia Advisory ID:
SA28740		 Solution Status:
Unpatched
Criticality:
 Impact:
DoS
 Where:
From remote
Short Description:
Avaya has acknowledged a vulnerability in various Avaya products, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]

Avaya CMS Solaris X Window System and X Server Multiple Vulnerabilities
Unpatched. Secunia Advisory 24 of 25 in 2008. 8,311 views.
Release Date:
2008-01-29		 Secunia Advisory ID:
SA28693		 Solution Status:
Unpatched
Criticality:
 Impact:
Exposure of sensitive information
Privilege escalation
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged some vulnerabilities in Avaya CMS (Call Management System), which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges. [Read More]

Avaya CMS / IR Solaris X Window System PCF Font Handler Vulnerability
Partial Fix. Secunia Advisory 25 of 25 in 2008. 6,517 views.
Release Date:
2008-01-25		 Secunia Advisory ID:
SA28621		 Solution Status:
Partial Fix
Criticality:
 Impact:
Privilege escalation
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS / IR, which can be exploited by malicious, local users to cause a DoS (Denial of Service), or to gain escalated privileges. [Read More]






Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs (open positions) | About Secunia
Copyright Secunia 2002-2009