This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/h:avaya:s8500:r2.0.0 |
| Detail | |||
|---|---|---|---|
| Vendor | Avaya | First view | 2004-07-27 |
| Product | s8500 | Last view | 2007-03-09 |
| Version | r2.0.0 | Type | Hardware |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/h:avaya:s8500 | ||
Activity : Yearly
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 4.3 | 2007-03-09 | CVE-2007-1367 | Network | Medium | None Requ... | |
| 2.1 | 2005-04-14 | CVE-2005-0003 | Local | Low | None Requ... | |
| 6.2 | 2005-04-14 | CVE-2004-1235 | Local | High | None Requ... | |
| 5 | 2004-11-23 | CVE-2004-0112 | Network | Low | None Requ... | |
| 5 | 2004-11-23 | CVE-2004-0081 | Network | Low | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 5 | 2004-11-23 | CVE-2004-0079 | Network | Low | None Requ... | |
| 2.1 | 2004-08-06 | CVE-2004-0554 | Local | Low | None Requ... | |
| 7.2 | 2004-08-06 | CVE-2004-0495 | Local | Low | None Requ... | |
| 6.4 | 2004-08-06 | CVE-2004-0493 | Network | Low | None Requ... | |
| 6.8 | 2004-07-27 | CVE-2004-0595 | Network | Medium | None Requ... | |
| 5.1 | 2004-07-27 | CVE-2004-0594 | Network | High | None Requ... |
CAPEC : Common Attack Pattern Enumeration & Classificatio
| id | Name |
|---|---|
| CAPEC-3 | Using Leading 'Ghost' Character Sequences to Bypass Input Filters |
| CAPEC-6 | Argument Injection |
| CAPEC-15 | Command Delimiters |
| CAPEC-18 | Embedding Scripts in Nonscript Elements |
| CAPEC-27 | Leveraging Race Conditions via Symbolic Links |
| id | Name |
|---|---|
| CAPEC-29 | Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions |
| CAPEC-32 | Embedding Scripts in HTTP Query Strings |
| CAPEC-43 | Exploiting Multiple Input Interpretation Layers |
| CAPEC-63 | Simple Script Injection |
| CAPEC-71 | Using Unicode Encoding to Bypass Validation Logic |
| CAPEC-73 | User-Controlled Filename |
| CAPEC-85 | Client Network Footprinting (using AJAX/XSS) |
| CAPEC-86 | Embedding Script (XSS ) in HTTP Headers |
| CAPEC-163 | Spear Phishing |
| CAPEC-247 | Cross-Site Scripting with Masking through Invalid Characters in Identifiers |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:9779 | The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to... |
| oval:org.mitre.oval:def:975 | Red Hat OpenSSL do_change_cipher_spec Function Denial of Service |
| oval:org.mitre.oval:def:870 | Red Hat Enterprise 3 OpenSSL do_change_cipher_spec Function Denial of Service |
| oval:org.mitre.oval:def:5770 | Multiple Vendor OpenSSL 0.9.6x, 0.9.7x Null-Pointer DoS Vulnerability |
| oval:org.mitre.oval:def:2621 | OpenSSL Denial of Service Vulnerabilities |
| id | Name |
|---|---|
| oval:org.mitre.oval:def:902 | Red Hat OpenSSL Improper Unknown Message Handling Vulnerability |
| oval:org.mitre.oval:def:871 | Red Hat Enterprise 3 OpenSSL Improper Unknown Message Handling Vulnerability |
| oval:org.mitre.oval:def:11755 | OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, w... |
| oval:org.mitre.oval:def:9580 | The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when usin... |
| oval:org.mitre.oval:def:928 | Red Hat Enterprise 3 OpenSSL Kerberos Handshake Vulnerability |
| oval:org.mitre.oval:def:1049 | Red Hat OpenSSL Kerberos Handshake Vulnerability |
| oval:org.mitre.oval:def:10605 | The ap_get_mime_headers_core function in Apache httpd 2.0.49 allows remote at... |
| oval:org.mitre.oval:def:2961 | Multiple Privilege Escalation Vulnerabilities in Linux Kernel |
| oval:org.mitre.oval:def:10155 | Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local user... |
| oval:org.mitre.oval:def:9426 | Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local user... |
| oval:org.mitre.oval:def:2915 | Linux Kernel Denial of Service Vulnerability via fsave and frstor Instructions |
| oval:org.mitre.oval:def:10896 | The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3... |
| oval:org.mitre.oval:def:10619 | The strip_tags function in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, does ... |
| oval:org.mitre.oval:def:9567 | Race condition in the (1) load_elf_library and (2) binfmt_aout function calls... |
| oval:org.mitre.oval:def:9512 | The 64 bit ELF support in Linux kernel 2.6 before 2.6.10, on 64-bit architect... |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 33297 | Avaya Communications Manager Login Page XSS |
| 12917 | Linux Kernel Elf Binary Overlapping VMA Local Privilege Escalation |
| 12791 | Linux Kernel sys_uselib Binary Format Loader Local Privilege Escalation |
| 7871 | PHP strip_tags() Function Filter Bypass |
| 7870 | PHP memory_limit Function Arbitrary Code Execution |
| id | Description |
|---|---|
| 7269 | Multiple HTTP Server Input Header Folding DoS |
| 7218 | Linux Kernel Unspecified Memory Disclosure |
| 7077 | Linux Kernel __clear_fpu Infinite Loop DoS |
| 4318 | OpenSSL TLS Infinite Loop DoS |
| 4317 | OpenSSL SSL/TLS Handshake Null Pointer DoS |
| 4316 | OpenSSL Kerberos SSL/TLS Handshake DoS |
