PT-2001-2392 · Avaya · Avaya Argent Office

Published

2001-08-07

Updated

2008-09-05

CVE-2001-1260

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Avaya Argent Office (affected versions not specified)

Description: The issue concerns the use of weak encryption, specifically trivial encoding, for passwords in Avaya Argent Office. This weakness allows remote attackers to gain administrator privileges by sniffing and decrypting the passwords during a system reboot.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-1260

Affected Products

Avaya Argent Office

PT-2001-2392 · Avaya · Avaya Argent Office

CVE-2001-1260

Related Identifiers

Affected Products

References · 3