7 matches found
Critical TLStorm 2.0 Bugs Affect Widely-Used Aruba and Avaya Network Switches
Cybersecurity researchers have detailed as many as five severe security flaws in the implementation of TLS protocol in several models of Aruba and Avaya network switches that could be abused to gain remote access to enterprise networks and steal valuable information. The findings follow the March...
Avaya switches安全漏洞
Avaya switches is a switch from the French company Avaya. A security vulnerability exists in Avaya switches that originates from a process on the web server that handles POST requests not properly validating NanoSSL return values. A remote attacker could use this vulnerability to pass specially...
Avaya switches安全漏洞
Avaya switches is a switch from the French company Avaya. A security vulnerability exists in Avaya switches that originates. The vulnerability exists due to a boundary error when processing multi-part form data with strings that do not end in null. An unauthenticated, remote attacker could exploi...
Avaya switches缓冲区错误漏洞
Avaya switches is a switch from Avaya France. A security vulnerability exists in Avaya switches that stems from a boundary error in the RADIUS client implementation. A remote user can pass specially crafted data to the application, triggering a heap-based buffer overflow to exploit the...
Avaya switches 缓冲区错误漏洞
Avaya switches is a switch from Avaya France. A buffer error vulnerability exists in Avaya switches that stems from incorrect input validation in the NanoSSL library. A remote attacker could exploit this vulnerability to execute arbitrary code on the target system...
Avaya switches contains multiple undocumented accounts allowing full administrative access to the device
Overview Multiple Avaya switches do not adequately protect privileged access. Description Avaya's P882, P880, P580, and P550R series switches do not adequately protect account access. As a result, a remote attacker can gain access to the switch via http or telnet. --- Impact A remote attacker can...
Undocumented account vulnerability in Avaya P550R/P580/P880/P882 switches
Undocumented account vulnerability in Avaya P550R/P580/P880/P882 switches 1. Problem Description Two undocummented accounts with default passwords allow access via telnet and the web interface to Cajun P550R/P580/P880/P882 switches. Both accounts give developer access to the switch. The...