Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

alcatel-lucent vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2011-0344
Multiple stack-based buffer overflows in unspecified CGI programs in the Unified Maintenance Tool web interface in the embedded web server in the Communication Server (CS) in Alcatel-Lucent OmniPCX Enterprise before R9.0 H1.301.50 allow remote malicious users to execute arbitrary...
Alcatel-lucent Omnipcx 7.1Alcatel-lucent OmnipcxAlcatel-lucent Omnipcx 5.0Alcatel-lucent Omnipcx 7.0Alcatel-lucent Omnipcx 8.0Alcatel-lucent Omnipcx 6.2
NA
CVE-2010-3279
The default configuration of the CCAgent option prior to 9.0.8.4 in the management server (aka TSA) component in Alcatel-Lucent OmniTouch Contact Center Standard Edition enables maintenance access, which allows remote malicious users to monitor or reconfigure Contact Center opera...
Alcatel-lucent CcagentAlcatel-lucent Ccagent 7.1Alcatel-lucent Omnitouch Contact Center -
NA
CVE-2010-3280
The CCAgent option 9.0.8.4 and previous versions in the management server (aka TSA) component in Alcatel-Lucent OmniTouch Contact Center Standard Edition relies on client-side authorization checking, and unconditionally sends the SuperUser password to the client for use during an...
Alcatel-lucent Ccagent 7.1Alcatel-lucent CcagentAlcatel-lucent Omnitouch Contact Center -
NA
CVE-2010-3281
Stack-based buffer overflow in the HTTP proxy service in Alcatel-Lucent OmniVista 4760 server before R5.1.06.03.c_Patch3 allows remote malicious users to execute arbitrary code or cause a denial of service (service crash) via a long request.
Alcatel-lucent Omnivista 4760 Server 4.1.13.00Alcatel-lucent Omnivista 4760 Server 5.1Alcatel-lucent Omnivista 4760 Server 5.0Alcatel-lucent Omnivista 4760 Server 5.1.06.03.cAlcatel-lucent Omnivista 4760 Server
NA
CVE-2011-0345
Directory traversal vulnerability in the NMS server in Alcatel-Lucent OmniVista 4760 R5.1.06.03 and previous versions allows remote malicious users to read arbitrary files via directory traversal sequences in HTTP GET requests, related to the lang variable.
Alcatel-lucent OmnivistaAlcatel-lucent Omnivista 4760 R5.0.07.05
7.5
CVSSv3
CVE-2015-6498
Alcatel-Lucent Home Device Manager prior to 4.1.10, 4.2.x prior to 4.2.2 allows remote malicious users to spoof and make calls as target devices.
Alcatel-lucent Home Device Manager 4.2.0Alcatel-lucent Home Device ManagerAlcatel-lucent Home Device Manager 4.2.1
NA
CVE-2013-4653
Multiple cross-site scripting (XSS) vulnerabilities in the signin functionality of ics in MyTeamwork services in Alcatel-Lucent Omnitouch 8660 My Teamwork prior to 6.7, Omnitouch 8670 Automated Message Delivery System (AMDS) prior to 6.7, Omnitouch 8460 Advanced Communication Ser...
Alcatel-lucent Omnitouch 8670 Automated Delivery Message Delivery SystemAlcatel-lucent Omnitouch 8460 Advanced Communication ServerAlcatel-lucent Omnitouch 8660 My TeamworkAlcatel-lucent Omnitouch 8400 Instant Communications Suite
9.8
CVSSv3
CVE-2016-9796
Alcatel-Lucent OmniVista 8770 2.0 up to and including 3.0 exposes different ORBs interfaces, which can be queried using the GIOP protocol on TCP port 30024. An attacker can bypass authentication, and OmniVista invokes methods (AddJobSet, AddJob, and ExecuteNow) that can be used t...
Alcatel-lucent Omnivista 8770 Network Management System 3.0Alcatel-lucent Omnivista 8770 Network Management System 2.0Alcatel-lucent Omnivista 8770 Network Management System 2.6
NA
CVE-2007-5361
The Communication Server in Alcatel-Lucent OmniPCX Enterprise 7.1 and previous versions caches an IP address during a TFTP request from an IP Touch phone, and uses this IP address as the destination for all subsequent VoIP packets to this phone, which allows remote malicious user...
Alcatel-lucent Omnipcx
NA
CVE-2007-5190
Multiple cross-site scripting (XSS) vulnerabilities in Alcatel OmniVista 4760 R4.2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via (1) the action parameter to php-bin/Webclient.php or (2) the Langue parameter to the default URI.
Alcatel-lucent Omnivista
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionfirmwareCVE-2006-4304CVE-2024-32878CVE-2024-31502XSSCVE-2024-3059CVE-2024-33692CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook