CVE-2008-6711

Unspecified vulnerability in the Web administration interface in Avaya Communication Manager 3.1.x before CM 3.1.4 SP2 and 4.0.x before 4.0.3 SP1 allows remote authenticated users to execute arbitrary commands via unknown vectors related to "viewing system logs."

Link	Resource
http://www.osvdb.org/46581
http://support.avaya.com/elmodocs2/security/ASA-2008-270.htm	Vendor Advisory
http://www.voipshield.com/research-details.php?id=80
http://www.vupen.com/english/advisories/2008/1944/references
http://secunia.com/advisories/30799
http://www.securityfocus.com/bid/29939
https://exchange.xforce.ibmcloud.com/vulnerabilities/43391

Configuration 1

cpe:2.3:a:avaya:communication_manager:3.1.4:*:*:*:*:*:*:* cpe:2.3:a:avaya:communication_manager:4.0.1:sp15500:*:*:*:*:*:* cpe:2.3:a:avaya:communication_manager:3.1.2:*:*:*:*:*:*:* cpe:2.3:a:avaya:communication_manager:3.1.4:sp1:*:*:*:*:*:* cpe:2.3:a:avaya:communication_manager:3.1.1:*:*:*:*:*:*:* cpe:2.3:a:avaya:communication_manager:4.0:*:*:*:*:*:*:* cpe:2.3:a:avaya:communication_manager:4.0.1:sp15215:*:*:*:*:*:* cpe:2.3:a:avaya:communication_manager:3.1:*:*:*:*:*:*:* cpe:2.3:a:avaya:communication_manager:4.0.3:*:*:*:*:*:*:* cpe:2.3:a:avaya:communication_manager:3.1.3:*:*:*:*:*:*:* cpe:2.3:a:avaya:communication_manager:4.0.1:*:*:*:*:*:*:*

---

Published : 2009-04-10 10:00

Updated : 2017-08-17 01:29

---

NVD link : CVE-2008-6711

Mitre link : CVE-2008-6711

Avaya

NVD-CWE-noinfo