Lucene search

MitreCVELIST:CVE-2008-6797

HistoryMay 07, 2009 - 6:00 p.m.

CVE-2008-6797

2009-05-0718:00:00

mitre

www.cve.org

mitel nupoint messenger

r11

cleartext

usernames

passwords

exchange servers

remote attackers

sensitive information

network sniffing

AI Score

6.2

Confidence

Low

EPSS

0.002

Percentile

57.3%

JSON

The server in Mitel NuPoint Messenger R11 and R3 sends usernames and passwords in cleartext to Exchange servers, which allows remote attackers to obtain sensitive information by sniffing the network.

References

www.kb.cert.org/vuls/id/576996

www.mitel.com/resources/NuPoint_and_Exchange.pdf

www.securityfocus.com/bid/34847