PT-2001-2392 · Avaya · Avaya Argent Office

Publicado

2001-08-07

Atualizado

2008-09-05

CVE-2001-1260

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Avaya Argent Office (affected versions not specified)

Description: The issue concerns the use of weak encryption, specifically trivial encoding, for passwords in Avaya Argent Office. This weakness allows remote attackers to gain administrator privileges by sniffing and decrypting the passwords during a system reboot.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2001-1260

Produtos afetados

Avaya Argent Office

PT-2001-2392 · Avaya · Avaya Argent Office

CVE-2001-1260

Identificadores relacionados

Produtos afetados

Referências · 3