CVE-2010-3279 — HIGH (7.6) — White Hats Nepal

Q: How severe is CVE-2010-3279?

CVE-2010-3279 has been rated HIGH with a CVSS base score of 7.6/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2010-3279?

Check the references section above for vendor advisories and patch information. Affected products include: Alcatel-Lucent Ccagent, Alcatel-Lucent Omnitouch Contact Center.

Vulnerability Description

The default configuration of the CCAgent option before 9.0.8.4 in the management server (aka TSA) component in Alcatel-Lucent OmniTouch Contact Center Standard Edition enables maintenance access, which allows remote attackers to monitor or reconfigure Contact Center operations via vectors involving TSA_maintenance.exe.

CVSS Score

7.6

HIGH

AV:A/AC:M/Au:N/C:C/I:P/A:C

Confidentiality

COMPLETE

Integrity

PARTIAL

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Alcatel-Lucent	Ccagent	<= 8.0
Alcatel-Lucent	Omnitouch Contact Center	-

Related Weaknesses (CWE)

CWE-16

References

FAQ

What is CVE-2010-3279?

CVE-2010-3279 is a vulnerability with a CVSS score of 7.6 (HIGH). The default configuration of the CCAgent option before 9.0.8.4 in the management server (aka TSA) component in Alcatel-Lucent OmniTouch Contact Center Standard Edition enables maintenance access, whic...

How severe is CVE-2010-3279?

CVE-2010-3279 has been rated HIGH with a CVSS base score of 7.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2010-3279?

Check the references section above for vendor advisories and patch information. Affected products include: Alcatel-Lucent Ccagent, Alcatel-Lucent Omnitouch Contact Center.