108 matches found
CVE-2008-6896
login.php in 3CX Phone System 6.0.806.0, when 100% disk capacity is reached, allows remote attackers to gain sensitive information via unspecified vectors that reveal the installation path...
CVE-2008-6896
CVE-2008-6896 affects the 3CX Phone System (version 6.0.806.0). When disk usage reaches 100%, remote attackers can obtain sensitive information that reveals the installation path through unspecified vectors. The exact root cause is not detailed in the provided documents. Impact is described as pa...
CVE-2008-6895
3CX Phone System 6.0.806.0 allows remote attackers to cause a denial of service unstable service or crash via unspecified vectors, as demonstrated by vulnerability scans from Nessus or SAINT...
CVE-2008-6895
CVE-2008-6895 affects 3CX Phone System 6.0.806.0. The vulnerability enables remote attackers to cause a denial of service (unstable service or crash) via unspecified vectors, as demonstrated by Nessus/SAINT scans. The NVD metrics show a CVSSv2 base score of 7.8 (HIGH) with network access, no auth...
CVE-2008-6894
3CX Phone System for Windows (Free Edition) versions 6.1793 and 6.0.806.0 are affected by multiple XSS in login.php, exploitable via the fName and fPassword parameters. The underlying issue is insufficient input sanitization that allows an unauthenticated remote attacker to inject arbitrary HTML/...
DEBIAN-CVE-2008-3903
Asterisk Open Source 1.2.x before 1.2.32, 1.4.x before 1.4.24.1, and 1.6.0.x before 1.6.0.8; Asterisk Business Edition A.x.x, B.x.x before B.2.5.8, C.1.x.x before C.1.10.5, and C.2.x.x before C.2.3.3; s800i 1.3.x before 1.3.0.2; and Trixbox PBX 2.6.1, when Digest authentication and authalwaysreje...
Input Validation/Output Encoding Vulnerabilities in Cisco CallManager Allow Script Injection Attacks
I. SYNOPSIS Release Date: 07/19/2006 Affected Application: Cisco CallManager 3.1 and up versions prior to 3.1 were not tested but may still be vulnerable Severity If Exploited: High Impact: Arbitrary configuration of phone system/Theft of individual phone users' credentials Mitigating Factors:...
Cisco VG248 login password is blank
The remote host is a Cisco VG248 with a blank password. SPDX-FileCopyrightText: 2005 Rick McCloskey Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only Cisco VG248 with a blank password nas...