CVE-2016-2783

Name of the Vulnerable Software and Affected Versions Avaya Fabric Connect Virtual Services Platform (VSP) Operating System Software (VOSS) versions prior to 4.2.3.0 Avaya Fabric Connect Virtual Services Platform (VSP) Operating System Software (VOSS) versions 5.x prior to 5.0.1.0

Description The issue is related to the improper handling of VLAN and I-SIS indexes, allowing remote attackers to obtain unauthorized access via crafted Ethernet frames. This can be exploited by sending specially crafted Ethernet frames to gain unauthorized access.

Recommendations For versions prior to 4.2.3.0, update to version 4.2.3.0 or later to resolve the issue. For versions 5.x prior to 5.0.1.0, update to version 5.0.1.0 or later to resolve the issue.