Lucene search

PRIOn knowledge basePRION:CVE-2010-3279

HistorySep 23, 2010 - 7:00 p.m.

Default configuration

2010-09-2319:00:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:A/AC:M/Au:N/C:C/I:P/A:C

0.018 Low

EPSS

Percentile

87.8%

JSON

The default configuration of the CCAgent option before 9.0.8.4 in the management server (aka TSA) component in Alcatel-Lucent OmniTouch Contact Center Standard Edition enables maintenance access, which allows remote attackers to monitor or reconfigure Contact Center operations via vectors involving TSA_maintenance.exe.

CPENameOperatorVersion
ccagentle8.0
ccagenteq7.1

CPE	Name	Operator	Version
	ccagent	le	8.0
	ccagent	eq	7.1

References

secunia.com/advisories/41509

www.alcatel-lucent.com/wps/DocumentStreamerServlet?LMSG_CABINET=Corporate&LMSG_CONTENT_FILE=Support/Security/2010001.pdf

www.nruns.com/_downloads/nruns-SA-2010-001.pdf

www.securityfocus.com/archive/1/513869

www.securityfocus.com/bid/43340

www.vupen.com/english/advisories/2010/2459

exchange.xforce.ibmcloud.com/vulnerabilities/61921

7.1 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:A/AC:M/Au:N/C:C/I:P/A:C

0.018 Low

EPSS

Percentile

87.8%

JSON

Related for PRION:CVE-2010-3279