CVE-2008-5710
First published: Wed Dec 24 2008(Updated: )
Multiple unspecified vulnerabilities in the web management interface in Avaya Communication Manager (CM) 3.1.x, 4.0.3, and 5.x allow remote attackers to read (1) configuration files, (2) log files, (3) binary image files, and (4) help files via unknown vectors.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Avaya Aura Communication Manager | =5.0 | |
| Avaya Aura Communication Manager | =3.1.4 | |
| Avaya Aura Communication Manager | =3.1.2 | |
| Avaya Aura Communication Manager | =3.1.5-sp0 | |
| Avaya Aura Communication Manager | =3.1.4-sp1 | |
| Avaya Aura Communication Manager | =3.1.1 | |
| Avaya Aura Communication Manager | =5.1.1 | |
| Avaya Aura Communication Manager | =5.1 | |
| Avaya Aura Communication Manager | =3.1.4-sp2 | |
| Avaya Aura Communication Manager | =5.1.2 | |
| Avaya Aura Communication Manager | =3.1.5 | |
| Avaya Aura Communication Manager | =5.1.1-sp1 | |
| Avaya Aura Communication Manager | =5.1-sp1 | |
| Avaya Aura Communication Manager | =5.0-sp3 | |
| Avaya Aura Communication Manager | =5.0-sp1 | |
| Avaya Aura Communication Manager | =3.1 | |
| Avaya Aura Communication Manager | =5.0-sp2 | |
| Avaya Aura Communication Manager | =4.0.3 | |
| Avaya Aura Communication Manager | =5.1.2-sp0 | |
| Avaya Aura Communication Manager | =3.1.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2008-5710?
CVE-2008-5710 is classified as a high severity vulnerability due to its potential to allow remote attackers unauthorized access to sensitive files.
How can I mitigate the risks associated with CVE-2008-5710?
To mitigate CVE-2008-5710, it is recommended to apply the latest security patches provided by Avaya for the affected versions.
Which versions of Avaya Communication Manager are affected by CVE-2008-5710?
CVE-2008-5710 affects Avaya Communication Manager versions 3.1.x, 4.0.3, and 5.x.
What types of files can attackers potentially access through CVE-2008-5710?
Attackers can potentially access configuration files, log files, binary images, and help files through CVE-2008-5710.
What actions should be taken if my system is running an affected version of Avaya Communication Manager?
If your system is running an affected version of Avaya Communication Manager, you should prioritize upgrading or patching the software to address CVE-2008-5710.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/severity
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/avaya
- canonical/avaya aura communication manager
- version/avaya aura communication manager/5.0
- version/avaya aura communication manager/3.1.4
- version/avaya aura communication manager/3.1.2
- version/avaya aura communication manager/3.1.5-sp0
- version/avaya aura communication manager/3.1.4-sp1
- version/avaya aura communication manager/3.1.1
- version/avaya aura communication manager/5.1.1
- version/avaya aura communication manager/5.1
- version/avaya aura communication manager/3.1.4-sp2
- version/avaya aura communication manager/5.1.2
- version/avaya aura communication manager/3.1.5
- version/avaya aura communication manager/5.1.1-sp1
- version/avaya aura communication manager/5.1-sp1
- version/avaya aura communication manager/5.0-sp3
- version/avaya aura communication manager/5.0-sp1
- version/avaya aura communication manager/3.1
- version/avaya aura communication manager/5.0-sp2
- version/avaya aura communication manager/4.0.3
- version/avaya aura communication manager/5.1.2-sp0
- version/avaya aura communication manager/3.1.3