Secunia Logo  
 Vulnerability InformationVulnerability ScanningCommunityBlog - new entry!Corporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Information > Secunia Advisories > Advisories by Product > Avaya Interactive Response 1.x
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About


Secunia PSI WorldMap 		 
Vulnerability Report: Avaya Interactive Response 1.x
This vulnerability report for Avaya Interactive Response 1.x contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.

If you have information about a new or an existing vulnerability in Avaya Interactive Response 1.x then you are more than welcome to contact us.


Table of Contents

1. Product Summary Only

2. Secunia Advisory Statistics (All time)
2.1. Statistics for 2009
2.2. Statistics for 2008
2.3. Statistics for 2007
2.4. Statistics for 2006
2.5. Statistics for 2005
2.6. Statistics for 2004
2.7. Statistics for 2003

3. List of Secunia Advisories (All time)
3.1. List for 2009
3.2. List for 2008
3.3. List for 2007
3.4. List for 2006
3.5. List for 2005
3.6. List for 2004
3.7. List for 2003

4. Send Feedback
 
Vendor, Links, and Unpatched Vulnerabilities

Vendor Avaya

Product Link View Here (Link to external site)

Affected By 35 Secunia advisories
43 Vulnerabilities

Monitor Product Receive alerts for this product

Unpatched 20% (7 of 35 Secunia advisories)

Most Critical Unpatched
The most severe unpatched Secunia advisory affecting Avaya Interactive Response 1.x, with all vendor patches applied, is rated Highly critical .




35 Secunia Advisories in 2003-2009
Secunia has issued a total of 35 Secunia advisories in 2003-2009 for Avaya Interactive Response 1.x. Currently, 20% (7 out of 35) are marked as unpatched with the most severe being rated Highly critical

More information about the specific Secunia advisories affecting Avaya Interactive Response 1.x can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.



Avaya CMS / IR Solaris Remote Procedure Call Module Denial of Service
Partial Fix. Secunia Advisory 1 of 17 in 2007. 5,097 views.
Release Date:
2007-12-12		 Secunia Advisory ID:
SA28057		 Solution Status:
Partial Fix
Criticality:
 Impact:
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS / IR, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]

Avaya CMS / IR Sun Solaris FIFO File System Unauthorized Data Access
Vendor Patch. Secunia Advisory 2 of 17 in 2007. 5,271 views.
Release Date:
2007-11-13		 Secunia Advisory ID:
SA27654		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Exposure of sensitive information
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS and IR, which can be exploited by malicious, local users to disclose potentially sensitive information. [Read More]

Avaya CMS / IR Sun Solaris Kernel Statistics Retrieval Denial of Service
Partial Fix. Secunia Advisory 3 of 17 in 2007. 5,623 views.
Release Date:
2007-11-05		 Secunia Advisory ID:
SA27536		 Solution Status:
Partial Fix
Criticality:
 Impact:
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged some vulnerabilities in Avaya CMS and IR, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]

Avaya CMS / IR BIND Predictable DNS Query IDs Vulnerability
Unpatched. Secunia Advisory 4 of 17 in 2007. 5,640 views.
Release Date:
2007-10-31		 Secunia Advisory ID:
SA27459		 Solution Status:
Unpatched
Criticality:
 Impact:
Spoofing
 Where:
From remote
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS and IR, which can be exploited by malicious people to poison the DNS cache. [Read More]

Avaya CMS / IR Sun Solaris RPC Services Library Denial of Service
Partial Fix. Secunia Advisory 5 of 17 in 2007. 5,385 views.
Release Date:
2007-10-25		 Secunia Advisory ID:
SA27386		 Solution Status:
Partial Fix
Criticality:
 Impact:
DoS
 Where:
From local network
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS and IR, which can be exploited by malicious, local users and malicious users to cause a DoS (Denial of Service). [Read More]

Avaya CMS / IR Solaris Thread Context Handling Denial of Service
Partial Fix. Secunia Advisory 6 of 17 in 2007. 5,780 views.
Release Date:
2007-10-03		 Secunia Advisory ID:
SA27059		 Solution Status:
Partial Fix
Criticality:
 Impact:
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS and IR, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]

Avaya CMS / IR Solaris Special File System "strfreectty()" Security Issue
Unpatched. Secunia Advisory 7 of 17 in 2007. 7,407 views.
Release Date:
2007-09-07		 Secunia Advisory ID:
SA26731		 Solution Status:
Unpatched
Criticality:
 Impact:
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged a security issue in Avaya CMS and IR, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]

Avaya CMS / IR Solaris lbxproxy Privilege Escalation Vulnerability
Partial Fix. Secunia Advisory 8 of 17 in 2007. 6,533 views.
Release Date:
2007-08-07		 Secunia Advisory ID:
SA26344		 Solution Status:
Partial Fix
Criticality:
 Impact:
Exposure of system information
Exposure of sensitive information
Privilege escalation
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS / IR, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]

Avaya CMS / IR Solaris rcp Command Line Shell Command Injection
Vendor Patch. Secunia Advisory 9 of 17 in 2007. 16,891 views.
Release Date:
2007-07-25		 Secunia Advisory ID:
SA26210		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Privilege escalation
 Where:
Local system
Short Description:
Avaya has acknowledged a weakness in Avaya CMS / IR, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]

Avaya CMS / IR libsldap Denial of Service
Partial Fix. Secunia Advisory 10 of 17 in 2007. 7,634 views.
Release Date:
2007-07-20		 Secunia Advisory ID:
SA26125		 Solution Status:
Partial Fix
Criticality:
 Impact:
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged a weakness in Avaya CMS and IR, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]

Avaya CMS / IR Solaris dtsession Privilege Escalation Vulnerability
Partial Fix. Secunia Advisory 11 of 17 in 2007. 6,874 views.
Release Date:
2007-07-20		 Secunia Advisory ID:
SA26136		 Solution Status:
Partial Fix
Criticality:
 Impact:
Privilege escalation
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS / IR, which can be exploited by malicious, local users to gain escalated privileges. [Read More]

Avaya IR Java Web Start Insecure System Classes Vulnerability
Vendor Workaround. Secunia Advisory 12 of 17 in 2007. 4,954 views.
Release Date:
2007-05-28		 Secunia Advisory ID:
SA25413		 Solution Status:
Vendor Workaround
Criticality:
 Impact:
Security Bypass
 Where:
From remote
Short Description:
Avaya has acknowledged a vulnerability in Avaya IR, which can be exploited by malicious people to bypass certain security restrictions. [Read More]

Avaya CMS / IR Sun Solaris libX11 Integer Overflow Vulnerability
Unpatched. Secunia Advisory 13 of 17 in 2007. 5,358 views.
Release Date:
2007-05-03		 Secunia Advisory ID:
SA25112		 Solution Status:
Unpatched
Criticality:
 Impact:
Privilege escalation
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS and IR, which can be exploited by malicious, local users to gain escalated privileges. [Read More]

Avaya CMS / IR Sun Solaris IP Packet Denial of Service
Partial Fix. Secunia Advisory 14 of 17 in 2007. 5,289 views.
Release Date:
2007-04-23		 Secunia Advisory ID:
SA24987		 Solution Status:
Partial Fix
Criticality:
 Impact:
DoS
 Where:
From remote
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS / IR, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]

Avaya CMS / IR Sun Solaris rm Race Condition Vulnerability
Partial Fix. Secunia Advisory 15 of 17 in 2007. 6,313 views.
Release Date:
2007-03-07		 Secunia Advisory ID:
SA24405		 Solution Status:
Partial Fix
Criticality:
 Impact:
Manipulation of data
Privilege escalation
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS and IR, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]

Avaya CMS / IR Sun Solaris rpcbind Denial of Service
Vendor Patch. Secunia Advisory 16 of 17 in 2007. 6,464 views.
Release Date:
2007-02-05		 Secunia Advisory ID:
SA24056		 Solution Status:
Vendor Patch
Criticality:
 Impact:
DoS
 Where:
From local network
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS / IR, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]

Avaya CMS / IR ld.so Directory Traversal and Buffer Overflow
Partial Fix. Secunia Advisory 17 of 17 in 2007. 5,924 views.
Release Date:
2007-01-30		 Secunia Advisory ID:
SA23991		 Solution Status:
Partial Fix
Criticality:
 Impact:
Privilege escalation
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability and a security issue in Avaya CMS / IR, which can be exploited by malicious, local users to disclose sensitive information or potentially gain escalated privileges. [Read More]

Avaya CMS / IR Sun Solaris libXfont Integer Overflow Vulnerability
Unpatched. Secunia Advisory 1 of 8 in 2006. 8,268 views.
Release Date:
2006-12-15		 Secunia Advisory ID:
SA23400		 Solution Status:
Unpatched
Criticality:
 Impact:
DoS
System access
 Where:
From remote
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS / IR, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]

Avaya CMS / IR Sun Solaris "syslog" Denial of Service
Unpatched. Secunia Advisory 2 of 8 in 2006. 6,978 views.
Release Date:
2006-10-26		 Secunia Advisory ID:
SA22587		 Solution Status:
Unpatched
Criticality:
 Impact:
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in CMS / IR, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]

Avaya CMS / IR Sun Solaris ACK Storm Denial of Service
Partial Fix. Secunia Advisory 3 of 8 in 2006. 5,976 views.
Release Date:
2006-10-16		 Secunia Advisory ID:
SA22425		 Solution Status:
Partial Fix
Criticality:
 Impact:
DoS
 Where:
From remote
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS/IR, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]

Avaya CMS / IR Sun Solaris Sendmail Denial of Service
Vendor Workaround. Secunia Advisory 4 of 8 in 2006. 9,143 views.
Release Date:
2006-08-30		 Secunia Advisory ID:
SA21647		 Solution Status:
Vendor Workaround
Criticality:
 Impact:
DoS
 Where:
From remote
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS and IR, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]

Avaya CMS / IR Sun Solaris LDAP2 and "sh" Vulnerabilities
Vendor Patch. Secunia Advisory 5 of 8 in 2006. 6,338 views.
Release Date:
2006-08-17		 Secunia Advisory ID:
SA21493		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Exposure of sensitive information
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged two vulnerabilities in Avaya CMS and Avaya IR, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and gain knowledge of sensitive information. [Read More]

Avaya CMS / IR "/proc" Denial of Service
Vendor Patch. Secunia Advisory 6 of 8 in 2006. 7,114 views.
Release Date:
2006-04-18		 Secunia Advisory ID:
SA19716		 Solution Status:
Vendor Patch
Criticality:
 Impact:
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS and Avaya IR, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]

Avaya CMS / IR Sendmail Memory Corruption Vulnerability
Unpatched. Secunia Advisory 7 of 8 in 2006. 11,628 views.
Release Date:
2006-04-14		 Secunia Advisory ID:
SA19676		 Solution Status:
Unpatched
Criticality:
 Impact:
System access
 Where:
From remote
Short Description:
Avaya has acknowledged a vulnerability in Avaya CMS and Avaya IR, which can be exploited by malicious people to compromise a vulnerable system. [Read More]

Avaya CMS / IR Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 8 of 8 in 2006. 9,805 views.
Release Date:
2006-03-04		 Secunia Advisory ID:
SA19087		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Security Bypass
Privilege escalation
 Where:
Local system
Short Description:
Avaya has acknowledged some vulnerabilities in CMS and IR, which can be exploited by malicious, local users to gain escalated privileges and to bypass certain security restrictions. [Read More]

Avaya CMS / IR Solaris UFS File System Denial of Service
Vendor Patch. Secunia Advisory 1 of 10 in 2005. 6,810 views.
Release Date:
2005-10-19		 Secunia Advisory ID:
SA17249		 Solution Status:
Vendor Patch
Criticality:
 Impact:
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in CMS and IR, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]

Avaya CMS / IR Solaris Xsun and Xprt Privilege Escalation Vulnerability
Vendor Patch. Secunia Advisory 2 of 10 in 2005. 6,942 views.
Release Date:
2005-10-19		 Secunia Advisory ID:
SA17246		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Privilege escalation
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in CMS and IR, which can be exploited by malicious, local users to gain escalated privileges. [Read More]

Avaya CMS / IR Solaris printd Daemon Arbitrary File Deletion
Partial Fix. Secunia Advisory 3 of 10 in 2005. 7,363 views.
Release Date:
2005-08-23		 Secunia Advisory ID:
SA16546		 Solution Status:
Partial Fix
Criticality:
 Impact:
Manipulation of data
 Where:
From local network
Short Description:
Avaya has acknowledged a vulnerability in CMS and IR, which can be exploited by malicious users to delete files on a vulnerable system. [Read More]

Avaya CMS / IR Solaris Runtime Linker Vulnerability
Unpatched. Secunia Advisory 4 of 10 in 2005. 6,447 views.
Release Date:
2005-08-02		 Secunia Advisory ID:
SA16278		 Solution Status:
Unpatched
Criticality:
 Impact:
Privilege escalation
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in CMS and IR, which can be exploited by malicious, local users to gain escalated privileges. [Read More]

Avaya CMS/IR lpadmin Arbitrary File Overwrite Vulnerability
Vendor Patch. Secunia Advisory 5 of 10 in 2005. 6,291 views.
Release Date:
2005-06-30		 Secunia Advisory ID:
SA15877		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Manipulation of data
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya Call Management System (CMS) and Avaya Interactive Response (IR), which can be exploited by malicious, local users to overwrite arbitrary files on a vulnerable system. [Read More]

Avaya IR automountd Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 6 of 10 in 2005. 6,034 views.
Release Date:
2005-05-19		 Secunia Advisory ID:
SA15430		 Solution Status:
Vendor Patch
Criticality:
 Impact:
DoS
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya Interactive Response (IR), which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]

Avaya CMS/IR Xsun and Xprt Server Font Handling Vulnerabilities
Vendor Patch. Secunia Advisory 7 of 10 in 2005. 6,177 views.
Release Date:
2005-05-16		 Secunia Advisory ID:
SA15366		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Privilege escalation
 Where:
Local system
Short Description:
Avaya has acknowledged some vulnerabilities in Avaya Call Management System (CMS) and Avaya Interactive Response (IR), which can be exploited by malicious, local users to gain escalated privileges. [Read More]

Avaya CMS/IR Network Port Hijacking Vulnerability
Vendor Patch. Secunia Advisory 8 of 10 in 2005. 7,453 views.
Release Date:
2005-05-16		 Secunia Advisory ID:
SA15384		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Hijacking
 Where:
Local system
Short Description:
Avaya has acknowledged some vulnerabilities in Avaya Call Management System (CMS) and Avaya Interactive Response (IR), which can be exploited by malicious, local users to hijack network ports. [Read More]

Avaya CMS/IR newgrp Privilege Escalation Vulnerability
Vendor Patch. Secunia Advisory 9 of 10 in 2005. 7,053 views.
Release Date:
2005-05-10		 Secunia Advisory ID:
SA15313		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Privilege escalation
 Where:
Local system
Short Description:
Avaya has acknowledged a vulnerability in Avaya Call Management System (CMS) and Avaya Interactive Response (IR), which can be exploited by malicious, local users to gain escalated privileges. [Read More]

Avaya Various Products Information Disclosure
Vendor Workaround. Secunia Advisory 10 of 10 in 2005. 6,983 views.
Release Date:
2005-03-09		 Secunia Advisory ID:
SA14197		 Solution Status:
Vendor Workaround
Criticality:
 Impact:
Exposure of sensitive information
 Where:
Local system
Short Description:
Adrian Pastor has reported a security issue in various Avaya products, which can be exploited by malicious, local users to gain knowledge of sensitive information. [Read More]






Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs (open positions) | About Secunia
Copyright Secunia 2002-2009