8 matches found
Avaya IP Office CCR ImageUpload.ashx Unrestricted File Upload (CVE-2012-3811)
An unauthorized file upload vulnerability has been reported in Avaya IP Office Customer Call Reporter...
Avaya IP Office Customer Call Reporter ImageUpload.ashx file upload
Added: 10/22/2012 CVE: CVE-2012-3811 BID: 54225 OSVDB: 83399 Background Avaya IP Office is a unified communications solution for mobile workforce. Problem The ImageUpload.ashx script allows unauthenticated users to upload arbitrary script files to the webserver. The script files can then be...
Avaya IP Office Customer Call Reporter ImageUpload.ashx file upload
Added: 10/22/2012 CVE: CVE-2012-3811 BID: 54225 OSVDB: 83399 Background Avaya IP Office is a unified communications solution for mobile workforce. Problem The ImageUpload.ashx script allows unauthenticated users to upload arbitrary script files to the webserver. The script files can then be...
Avaya IP Office Customer Call Reporter ImageUpload.ashx file upload
Added: 10/22/2012 CVE: CVE-2012-3811 BID: 54225 OSVDB: 83399 Background Avaya IP Office is a unified communications solution for mobile workforce. Problem The ImageUpload.ashx script allows unauthenticated users to upload arbitrary script files to the webserver. The script files can then be...
Avaya IP Office Customer Call Reporter ImageUpload.ashx file upload
Added: 10/22/2012 CVE: CVE-2012-3811 BID: 54225 OSVDB: 83399 Background Avaya IP Office is a unified communications solution for mobile workforce. Problem The ImageUpload.ashx script allows unauthenticated users to upload arbitrary script files to the webserver. The script files can then be...
Avaya IP Office Customer Call Reporter - 'ImageUpload.ashx' Remote Command Execution (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'uri' require 'msf/core' class Metasploit3 'Avaya IP Office Custome...
CVE-2012-3811
creationtimestamp| type| source ---|---|--- 2012-10-10 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/21847 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/avayaccrimageuploadexec.rb 2025-02-06 03:13:40+00:0...
CVE-2012-3811
CVE-2012-3811 affects Avaya IP Office Customer Call Reporter (CCR) ImageUpload.ashx, where an unrestricted file upload allows remote code execution by uploading an executable and accessing it directly. Affected: CCR 7.0 up to 7.0.5.8 Q1 2012 Maintenance Release and 8.0 up to 8.0.9.13 Q1 2012 Main...