Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
avaya vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-3320
The Avaya 4602SW IP Phone (Model 4602D02A) with 2.2.2 and previous versions SIP firmware accepts SIP INVITE requests from arbitrary source IP addresses, which allows remote malicious users to have an unspecified impact.
Avaya 4602sw Ip Phone
NA
CVE-2007-3321
The Avaya 4602 SW IP Phone (Model 4602D02A) with 2.2.2 and previous versions SIP firmware allows remote malicious users to cause a denial of service (device reboot) via a flood of packets to the BOOTP port (68/udp).
Avaya 4602sw Ip Phone
NA
CVE-2007-3322
The Avaya 4602 SW IP Phone (Model 4602D02A) with 2.2.2 and previous versions SIP firmware uses a constant media port number for calls, which allows remote malicious users to cause a denial of service (audio quality loss) via a flood of packets to the RTP port.
Avaya 4602sw Ip Phone
NA
CVE-2007-2374
Unspecified vulnerability in Microsoft Windows 2000, XP, and Server 2003 allows user-assisted remote malicious users to execute arbitrary code via unspecified vectors. NOTE: this information is based upon a vague pre-advisory with no actionable information. However, the advisory ...
Microsoft Windows 2000
Microsoft Windows 2003 Server Enterprise
Microsoft Windows 2003 Server Standard
Microsoft Windows Xp
Microsoft Windows 2003 Server
Microsoft Windows 2003 Server Itanium
Microsoft Windows 2003 Server Web
Microsoft Windows 2003 Server Datacenter
Avaya Definity One Media Server
Avaya S3400
Avaya S8100
Avaya Media Server
NA
CVE-2007-1765
Unspecified vulnerability in Microsoft Windows 2000 SP4 through Vista allows remote malicious users to execute arbitrary code or cause a denial of service (persistent reboot) via a malformed ANI file, which results in memory corruption when processing cursors, animated cursors, a...
Microsoft Windows 2000
Microsoft Windows 2000 -
Microsoft Windows 2003 Server -
Microsoft Windows Vista
Microsoft Windows Xp
Microsoft Ie 7.0
Avaya Ip600 Media Servers
Microsoft Internet Explorer
Avaya Definity One Media Server
Avaya S3400
Avaya S8100
11 EDB exploits
1 Article
NA
CVE-2007-1491
Apache Tomcat in Avaya S87XX, S8500, and S8300 before CM 3.1.3, and Avaya SES allows connections from external interfaces via port 8009, which exposes it to attacks from outside parties.
Avaya S8300
Avaya S8700
Avaya Sip Enablement Services
Avaya S8500
NA
CVE-2007-1490
Unspecified maintenance web pages in Avaya S87XX, S8500, and S8300 before CM 3.1.3, and Avaya SES allow remote authenticated users to execute arbitrary commands via shell metacharacters in unspecified vectors (aka "shell command injection").
Avaya Communication Manager
NA
CVE-2007-1367
Cross-site scripting (XSS) vulnerability in the login page in Avaya Communications Manager (CM) S87XX, S8500, and S8300 products prior to 3.1.3 allows remote malicious users to inject arbitrary web script or HTML via the Login field.
Avaya S8710 Cm 2.0
Avaya S8710 Cm 3.1
Avaya S8710 R2.0.0
Avaya S8710 R2.0.1
Avaya S8300 Cm 3.1
Avaya S8700 Cm 2.0
Avaya S8700 R2.0.0
Avaya S8300 R2.0.1
Avaya S8500 Cm 2.0
Avaya S8500 Cm 3.1
Avaya S8500 R2.0.0
Avaya S8500 R2.0.1
Avaya S8300 Cm 2.0
Avaya S8300 R2.0.0
Avaya S8700 Cm 3.1
Avaya S8700 R2.0.1
NA
CVE-2006-0718
The Internet Key Exchange version 1 (IKEv1) implementation in Avaya VSU 100, 2000, 7500, 10000, and CSU 5000, when running IPSec, allows remote malicious users to cause a denial of service (crash) via certain IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1....
Avaya Vsu 7500 3.2.40
Avaya Vsu 100 3.2.40
Avaya Vsu 10000 3.2.40
Avaya Vsu 2000 3.2.40
Avaya Csu 5000 3.2.40
NA
CVE-2005-2762
Avaya VPNRemote prior to 4.2.33 stores credentials in cleartext in process memory, which allows malicious users to obtain the VPN user's credentials.
Avaya Vpnremote 4.2.26
Avaya Vpnremote 4.2.30
Avaya Vpnremote 4.2.23
Avaya Vpnremote 4.2.24
Avaya Vpnremote 4.2.29
Avaya Vpnremote 4.2.32
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »