CVE-2013-4653

Multiple cross-site scripting XSS vulnerabilities in the signin functionality of ics in MyTeamwork services in Alcatel-Lucent Omnitouch 8660 My Teamwork before 6.7, Omnitouch 8670 Automated Message Delivery System AMDS before 6.7, Omnitouch 8460 Advanced Communication Server before 9.1, and...

CVE-2013-4653

Multiple cross-site scripting XSS vulnerabilities in the signin functionality of ics in MyTeamwork services in Alcatel-Lucent Omnitouch 8660 My Teamwork before 6.7, Omnitouch 8670 Automated Message Delivery System AMDS before 6.7, Omnitouch 8460 Advanced Communication Server before 9.1, and...

OmniTouch Instant Communication Suite XSRF / XSS

TC-SA-2011-01: Multiple vulnerabilities in OmniTouch Instant Communication Suite Published: 2011/10/24 Advisory-Version: 1.0 References: - Alcatel Lucent Vulnerability Statement 2011003 Multiple vulnerabilities in OmniTouch Instant Communication Suite - CVE-2011-4058 - multiple XSS vulnerabilitie...

CVE-2010-3279

The default configuration of the CCAgent option before 9.0.8.4 in the management server aka TSA component in Alcatel-Lucent OmniTouch Contact Center Standard Edition enables maintenance access, which allows remote attackers to monitor or reconfigure Contact Center operations via vectors involving...

CVE-2010-3280

The CCAgent option 9.0.8.4 and earlier in the management server aka TSA component in Alcatel-Lucent OmniTouch Contact Center Standard Edition relies on client-side authorization checking, and unconditionally sends the SuperUser password to the client for use during an authorized session, which...

Default configuration

The default configuration of the CCAgent option before 9.0.8.4 in the management server aka TSA component in Alcatel-Lucent OmniTouch Contact Center Standard Edition enables maintenance access, which allows remote attackers to monitor or reconfigure Contact Center operations via vectors involving...

CVE-2010-3279

The default configuration of the CCAgent option before 9.0.8.4 in the management server aka TSA component in Alcatel-Lucent OmniTouch Contact Center Standard Edition enables maintenance access, which allows remote attackers to monitor or reconfigure Contact Center operations via vectors involving...

CVE-2010-3280

The CVE-2010-3280 issue affects Alcatel-Lucent OmniTouch Contact Center Standard Edition, specifically the CCAgent option in the TSA/management server. The root cause is client-side authorization checking that results in the SuperUser password being sent to the client, enabling an attacker with a...

CVE-2010-3279

Affected product: Alcatel-Lucent OmniTouch Contact Center Standard Edition, CCAgent option (TSA management server). Root cause: default configuration and flawed authentication allow unauthenticated access to TSA_maintenance.exe, enabling remote monitoring or reconfiguration of Contact Center oper...