omnipcx software vulnerabilities
vulnerabilities.aspcode.net
Searching omnipcx software vulnerabilities
Alcatel OmniPCX 4400 installs files with world-
OmniPCX
|
Alcatel
|
Alcatel OmniPCX 4400 installs files with world-writable permissions, which allows local users to reconfigure the system and possibly gain privileges.
Alcatel OmniPCX 4400 installs known user accoun
OmniPCX
|
Alcatel
|
Alcatel OmniPCX 4400 installs known user accounts and passwords in the /etc/password file by default, which allows remote attackers to gain unauthorized access.
The Session Initiation Protocol (SIP) implement
Initiation
|
Protocol
|
Session
|
The Session Initiation Protocol (SIP) implementation in Alcatel OmniPCX Enterprise 5.0 Lx allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite.
Alcatel-Lucent IP-Touch Telephone running OmniP
Alcatel-Lucent
|
daisy-chained
|
Enterprise
|
attackers
|
Telephone
|
IP-Touch
|
default
|
systems
|
enables
|
OmniPCX
|
running
|
access
|
allows
|
switch
|
voice
|
later
|
which
|
VLAN
|
mini
|
gain
|
via
|
Alcatel-Lucent IP-Touch Telephone running OmniPCX Enterprise 7.0 and later enables the mini switch by default, which allows attackers to gain access to the voice VLAN via daisy-chained systems.
masterCGI in the Unified Maintenance Tool in Al
metacharacters
|
Communication
|
Maintenance
|
Enterprise
|
masterCGI
|
parameter
|
arbitrary
|
attackers
|
commands
|
earlier
|
OmniPCX
|
Alcatel
|
execute
|
Unified
|
action
|
during
|
allows
|
Server
|
remote
|
shell
|
Tool
|
ping
|
user
|
via
|
R71
|
masterCGI in the Unified Maintenance Tool in Alcatel OmniPCX Enterprise Communication Server R7.1 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the user parameter during a ping action.
Software vulnerabilities results 1 to 6 of 6
Page:
1