2 matches found
CVE-2017-12969
CVE-2017-12969 describes a buffer overflow in the ViewerCtrlLib.ViewerCtrl ActiveX control used by Avaya IP Office Contact Center prior to 10.1.1. An attacker can supply a long string to the open method, enabling remote denial-of-service through heap corruption and crash, or potentially arbitrary...
CVE-2019-7001
The CVE-2019-7001 entry concerns a SQL injection in the WebUI of IP Office Contact Center. The vulnerability affects all 9.x and 10.x IP Office Contact Center versions prior to 10.1.2.2.2-11201.1908. An authenticated attacker could retrieve or alter sensitive data related to other users on the sy...