Vulnerability Description
Multiple unspecified vulnerabilities in the web management interface in Avaya Communication Manager (CM) 3.1.x, 4.0.3, and 5.x allow remote attackers to read (1) configuration files, (2) log files, (3) binary image files, and (4) help files via unknown vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Avaya | Communication Manager | 3.1 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/32035Vendor Advisory
- http://support.avaya.com/elmodocs2/security/ASA-2008-394.htmVendor Advisory
- http://www.securityfocus.com/bid/31639
- http://www.voipshield.com/research-details.php?id=123
- http://www.vupen.com/english/advisories/2008/2774
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45750
- http://secunia.com/advisories/32035Vendor Advisory
- http://support.avaya.com/elmodocs2/security/ASA-2008-394.htmVendor Advisory
- http://www.securityfocus.com/bid/31639
- http://www.voipshield.com/research-details.php?id=123
- http://www.vupen.com/english/advisories/2008/2774
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45750
FAQ
What is CVE-2008-5710?
CVE-2008-5710 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Multiple unspecified vulnerabilities in the web management interface in Avaya Communication Manager (CM) 3.1.x, 4.0.3, and 5.x allow remote attackers to read (1) configuration files, (2) log files, (3...
How severe is CVE-2008-5710?
CVE-2008-5710 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-5710?
Check the references section above for vendor advisories and patch information. Affected products include: Avaya Communication Manager.