VYPR

Vendor CVEs

Avaya

All CVEs

156 total · sorted by risk
  • CVE-2002-1448Jul 8, 2002
    risk 0.00cvss epss 0.02

    An undocumented SNMP read/write community string ('NoGaH$@!') in Avaya P330, P130, and M770-ATM Cajun products allows remote attackers to gain administrative privileges.

  • CVE-2002-0176Apr 22, 2002
    risk 0.00cvss epss 0.00

    The printf wrappers in libsafe 2.0-11 and earlier do not properly handle argument indexing specifiers, which could allow attackers to exploit certain function calls through arguments that are not verified by libsafe.

  • CVE-2002-0175Apr 22, 2002
    risk 0.00cvss epss 0.00

    libsafe 2.0-11 and earlier allows attackers to bypass protection against format string vulnerabilities via format strings that use the "'" and "I" characters, which are implemented in libc but not libsafe.

  • CVE-2001-1262Aug 7, 2001
    risk 0.00cvss epss 0.02

    Avaya Argent Office 2.1 compares a user-provided SNMP community string with the correct string only up to the length of the user-provided string, which allows remote attackers to bypass authentication with a 0 length community string.

  • CVE-2001-1260Aug 7, 2001
    risk 0.00cvss epss 0.02

    Avaya Argent Office uses weak encryption (trivial encoding) for passwords, which allows remote attackers to gain administrator privileges by sniffing and decrypting the sniffing the passwords during a system reboot.

  • CVE-2001-1261Aug 7, 2001
    risk 0.00cvss epss 0.01

    Avaya Argent Office 2.1 may allow remote attackers to change hold music by spoofing a legitimate server's response to a TFTP broadcast and providing an alternate HoldMusic file.

Page 4 of 4