News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Secunia.com:
Avaya Products PHP Multiple Vulnerabilities
June 14, 2007 @ 08:02:00

Secunia has posted a vulnerability marked as "highly critical" for users of any of the Avaya products that use PHP:

Avaya has acknowledged some vulnerabilities in various Avaya products, where some have unknown impacts and others can be exploited by malicious users to bypass certain security restrictions and potentially by malicious people to compromise a vulnerable system.

The following products are affected:

  • Avaya Communication Manager (CM 4.0 and CM 2.x prior to load 127.0)
  • Avaya CCS/SES (CCS/SES 3.1.1)
  • Avaya AES (AES 4.0)

Currently, according to the original announcement from Avaya, there are two issues that have been found and are able to be exploited - an issue with the xmlrpc extension and a problem with the ftp extension. Currently, there is no patch to correct these issues, but you can keep track of their current status via their entries

0 comments voice your opinion now!
secunia avaya xmlrpc ftp extenstion vulnerability secunia avaya xmlrpc ftp extenstion vulnerability


blog comments powered by Disqus

Similar Posts

Ibuildings techPortal: DPCRadio: Web services for consumer devices

Secunia.com: phpChess Community Edition Multiple File Inclusion

Secunia.com: Debian update for PHP5

Hardened-PHP Project: Dotdeb PHP Email Header Injection Vulnerability

Gareth Heyes' Blog: PHP self return of the slash


Community Events





Don't see your event here?
Let us know!


package update symfony tool series laravel interview podcast mvc voicesoftheelephpant framework composer community language version introduction library security release opinion

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework