Vendor CVEs
Avaya
All CVEs
156 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2002-1448 | 0.00 | — | 0.02 | Jul 8, 2002 | An undocumented SNMP read/write community string ('NoGaH$@!') in Avaya P330, P130, and M770-ATM Cajun products allows remote attackers to gain administrative privileges. | |||
| CVE-2002-0176 | 0.00 | — | 0.00 | Apr 22, 2002 | The printf wrappers in libsafe 2.0-11 and earlier do not properly handle argument indexing specifiers, which could allow attackers to exploit certain function calls through arguments that are not verified by libsafe. | |||
| CVE-2002-0175 | 0.00 | — | 0.00 | Apr 22, 2002 | libsafe 2.0-11 and earlier allows attackers to bypass protection against format string vulnerabilities via format strings that use the "'" and "I" characters, which are implemented in libc but not libsafe. | |||
| CVE-2001-1262 | 0.00 | — | 0.02 | Aug 7, 2001 | Avaya Argent Office 2.1 compares a user-provided SNMP community string with the correct string only up to the length of the user-provided string, which allows remote attackers to bypass authentication with a 0 length community string. | |||
| CVE-2001-1260 | 0.00 | — | 0.02 | Aug 7, 2001 | Avaya Argent Office uses weak encryption (trivial encoding) for passwords, which allows remote attackers to gain administrator privileges by sniffing and decrypting the sniffing the passwords during a system reboot. | |||
| CVE-2001-1261 | 0.00 | — | 0.01 | Aug 7, 2001 | Avaya Argent Office 2.1 may allow remote attackers to change hold music by spoofing a legitimate server's response to a TFTP broadcast and providing an alternate HoldMusic file. |
- CVE-2002-1448Jul 8, 2002risk 0.00cvss —epss 0.02
An undocumented SNMP read/write community string ('NoGaH$@!') in Avaya P330, P130, and M770-ATM Cajun products allows remote attackers to gain administrative privileges.
- CVE-2002-0176Apr 22, 2002risk 0.00cvss —epss 0.00
The printf wrappers in libsafe 2.0-11 and earlier do not properly handle argument indexing specifiers, which could allow attackers to exploit certain function calls through arguments that are not verified by libsafe.
- CVE-2002-0175Apr 22, 2002risk 0.00cvss —epss 0.00
libsafe 2.0-11 and earlier allows attackers to bypass protection against format string vulnerabilities via format strings that use the "'" and "I" characters, which are implemented in libc but not libsafe.
- CVE-2001-1262Aug 7, 2001risk 0.00cvss —epss 0.02
Avaya Argent Office 2.1 compares a user-provided SNMP community string with the correct string only up to the length of the user-provided string, which allows remote attackers to bypass authentication with a 0 length community string.
- CVE-2001-1260Aug 7, 2001risk 0.00cvss —epss 0.02
Avaya Argent Office uses weak encryption (trivial encoding) for passwords, which allows remote attackers to gain administrator privileges by sniffing and decrypting the sniffing the passwords during a system reboot.
- CVE-2001-1261Aug 7, 2001risk 0.00cvss —epss 0.01
Avaya Argent Office 2.1 may allow remote attackers to change hold music by spoofing a legitimate server's response to a TFTP broadcast and providing an alternate HoldMusic file.
Page 4 of 4