Filtered by vendor Alcatel-lucent
Subscribe
Total
27 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2007-2512 | 1 Alcatel-lucent | 1 Omnipcx | 2023-12-10 | 7.5 HIGH | N/A |
| Alcatel-Lucent IP-Touch Telephone running OmniPCX Enterprise 7.0 and later enables the mini switch by default, which allows attackers to gain access to the voice VLAN via daisy-chained systems. | |||||
| CVE-2007-3010 | 1 Alcatel-lucent | 1 Omnipcx | 2023-12-10 | 10.0 HIGH | N/A |
| masterCGI in the Unified Maintenance Tool in Alcatel OmniPCX Enterprise Communication Server R7.1 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the user parameter during a ping action. | |||||
| CVE-2002-1691 | 1 Alcatel-lucent | 1 Omnipcx | 2023-12-10 | 10.0 HIGH | N/A |
| Alcatel OmniPCX 4400 installs known user accounts and passwords in the /etc/password file by default, which allows remote attackers to gain unauthorized access. | |||||
| CVE-2002-0294 | 1 Alcatel-lucent | 1 Omnipcx | 2023-12-10 | 2.1 LOW | N/A |
| Alcatel 4400 installs the /chetc/shutdown command with setgid privileges, which allows many different local users to shut down the system. | |||||
| CVE-2002-0293 | 1 Alcatel-lucent | 1 Omnipcx | 2023-12-10 | 6.2 MEDIUM | N/A |
| FTP service in Alcatel OmniPCX 4400 allows the "halt" user to gain root privileges by modifying root's .profile file. | |||||
| CVE-2002-0295 | 1 Alcatel-lucent | 1 Omnipcx | 2023-12-10 | 4.6 MEDIUM | N/A |
| Alcatel OmniPCX 4400 installs files with world-writable permissions, which allows local users to reconfigure the system and possibly gain privileges. | |||||
| CVE-2003-1108 | 1 Alcatel-lucent | 1 Omnipcx | 2023-12-10 | 5.0 MEDIUM | N/A |
| The Session Initiation Protocol (SIP) implementation in Alcatel OmniPCX Enterprise 5.0 Lx allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite. | |||||