Lucene search
+L

108 matches found

cvelist
cvelist
added 2009/08/03 6:0 p.m.22 views

CVE-2008-6896

login.php in 3CX Phone System 6.0.806.0, when 100% disk capacity is reached, allows remote attackers to gain sensitive information via unspecified vectors that reveal the installation path...

6.5AI score0.01064EPSS
Exploits0References2
cve
cve
added 2009/08/03 6:0 p.m.54 views

CVE-2008-6896

CVE-2008-6896 affects the 3CX Phone System (version 6.0.806.0). When disk usage reaches 100%, remote attackers can obtain sensitive information that reveals the installation path through unspecified vectors. The exact root cause is not detailed in the provided documents. Impact is described as pa...

5CVSS6.6AI score0.01064EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2009/08/03 6:0 p.m.28 views

CVE-2008-6895

3CX Phone System 6.0.806.0 allows remote attackers to cause a denial of service unstable service or crash via unspecified vectors, as demonstrated by vulnerability scans from Nessus or SAINT...

6.8AI score0.0121EPSS
Exploits0References2
cve
cve
added 2009/08/03 6:0 p.m.61 views

CVE-2008-6895

CVE-2008-6895 affects 3CX Phone System 6.0.806.0. The vulnerability enables remote attackers to cause a denial of service (unstable service or crash) via unspecified vectors, as demonstrated by Nessus/SAINT scans. The NVD metrics show a CVSSv2 base score of 7.8 (HIGH) with network access, no auth...

7.8CVSS7AI score0.0121EPSS
Exploits0References2Affected Software1
cve
cve
added 2009/08/03 6:0 p.m.74 views

CVE-2008-6894

3CX Phone System for Windows (Free Edition) versions 6.1793 and 6.0.806.0 are affected by multiple XSS in login.php, exploitable via the fName and fPassword parameters. The underlying issue is insufficient input sanitization that allows an unauthenticated remote attacker to inject arbitrary HTML/...

4.3CVSS5.9AI score0.01065EPSS
Exploits0References5Affected Software1
osv
osv
added 2008/09/04 7:41 p.m.3 views

DEBIAN-CVE-2008-3903

Asterisk Open Source 1.2.x before 1.2.32, 1.4.x before 1.4.24.1, and 1.6.0.x before 1.6.0.8; Asterisk Business Edition A.x.x, B.x.x before B.2.5.8, C.1.x.x before C.1.10.5, and C.2.x.x before C.2.3.3; s800i 1.3.x before 1.3.0.2; and Trixbox PBX 2.6.1, when Digest authentication and authalwaysreje...

3.5CVSS7.1AI score0.01852EPSS
Exploits1References1
securityvulns
securityvulns
added 2006/06/21 12:0 a.m.38 views

Input Validation/Output Encoding Vulnerabilities in Cisco CallManager Allow Script Injection Attacks

I. SYNOPSIS Release Date: 07/19/2006 Affected Application: Cisco CallManager 3.1 and up versions prior to 3.1 were not tested but may still be vulnerable Severity If Exploited: High Impact: Arbitrary configuration of phone system/Theft of individual phone users' credentials Mitigating Factors:...

0.4AI score
Exploits0
openvas
openvas
added 2006/03/26 12:0 a.m.65 views

Cisco VG248 login password is blank

The remote host is a Cisco VG248 with a blank password. SPDX-FileCopyrightText: 2005 Rick McCloskey Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only Cisco VG248 with a blank password nas...

7.4AI score
Exploits0
Rows per page
Query Builder