CVE-2008-6573

Multiple SQL injection vulnerabilities in Avaya SIP Enablement Services (SES) in Avaya Avaya Communication Manager 3.x, 4.0, and 5.0 (1) allow remote attackers to execute arbitrary SQL commands via unspecified vectors related to profiles in the SIP Personal Information Manager (SPIM) in the web interface; and allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors related to (2) permissions for SPIM profiles in the web interface and (3) a crafted SIP request to the SIP server.

CVSS v2.0 6.8 MEDIUM

6.8^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.securityfocus.com/bid/28682
http://www.voipshield.com/research-details.php?id=26
http://support.avaya.com/elmodocs2/security/ASA-2008-150.htm
http://secunia.com/advisories/29744	Vendor Advisory
http://support.avaya.com/elmodocs2/security/ASA-2008-151.htm	Vendor Advisory
http://www.voipshield.com/research-details.php?id=25
http://www.voipshield.com/research-details.php?id=22
http://osvdb.org/44285
http://osvdb.org/44284
http://osvdb.org/44286
https://exchange.xforce.ibmcloud.com/vulnerabilities/41733
https://exchange.xforce.ibmcloud.com/vulnerabilities/41730

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:avaya:communication_manager::::::::
	cpe:2.3:a:avaya:communication_manager:3.1.5:::::::*
	cpe:2.3:a:avaya:communication_manager:3.1.5:sp0::::::
	cpe:2.3:a:avaya:communication_manager:3.1.3:::::::*
	cpe:2.3:a:avaya:communication_manager:3.1.4:::::::*
	cpe:2.3:a:avaya:communication_manager:3.1.4:sp1::::::
	cpe:2.3:a:avaya:communication_manager:3.1.4:sp2::::::
	cpe:2.3:a:avaya:communication_manager:3.1.1:::::::*
	cpe:2.3:a:avaya:communication_manager:3.1.2:::::::*
	cpe:2.3:a:avaya:communication_manager:4.0:::::::*
	cpe:2.3:a:avaya:communication_manager:5.0:::::::*

Information

Published : 2009-04-01 15:30

Updated : 2017-08-16 18:29

NVD link : CVE-2008-6573

Mitre link : CVE-2008-6573

JSON object : View

CWE

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Advertisement

Products Affected

avaya

communication_manager

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.securityfocus.com/bid/28682", "name": "28682", "tags": [], "refsource": "BID"}, {"url": "http://www.voipshield.com/research-details.php?id=26", "name": "http://www.voipshield.com/research-details.php?id=26", "tags": [], "refsource": "MISC"}, {"url": "http://support.avaya.com/elmodocs2/security/ASA-2008-150.htm", "name": "http://support.avaya.com/elmodocs2/security/ASA-2008-150.htm", "tags": [], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/29744", "name": "29744", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://support.avaya.com/elmodocs2/security/ASA-2008-151.htm", "name": "http://support.avaya.com/elmodocs2/security/ASA-2008-151.htm", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.voipshield.com/research-details.php?id=25", "name": "http://www.voipshield.com/research-details.php?id=25", "tags": [], "refsource": "MISC"}, {"url": "http://www.voipshield.com/research-details.php?id=22", "name": "http://www.voipshield.com/research-details.php?id=22", "tags": [], "refsource": "MISC"}, {"url": "http://osvdb.org/44285", "name": "44285", "tags": [], "refsource": "OSVDB"}, {"url": "http://osvdb.org/44284", "name": "44284", "tags": [], "refsource": "OSVDB"}, {"url": "http://osvdb.org/44286", "name": "44286", "tags": [], "refsource": "OSVDB"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41733", "name": "avaya-ses-sip-sql-injection(41733)", "tags": [], "refsource": "XF"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41730", "name": "avaya-ses-spim-sql-injection(41730)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Multiple SQL injection vulnerabilities in Avaya SIP Enablement Services (SES) in Avaya Avaya Communication Manager 3.x, 4.0, and 5.0 (1) allow remote attackers to execute arbitrary SQL commands via unspecified vectors related to profiles in the SIP Personal Information Manager (SPIM) in the web interface; and allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors related to (2) permissions for SPIM profiles in the web interface and (3) a crafted SIP request to the SIP server."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-89"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2008-6573", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2009-04-01T22:30Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:avaya:communication_manager:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "3.1"}, {"cpe23Uri": "cpe:2.3:a:avaya:communication_manager:3.1.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:communication_manager:3.1.5:sp0:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:communication_manager:3.1.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:communication_manager:3.1.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:communication_manager:3.1.4:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:communication_manager:3.1.4:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:communication_manager:3.1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:communication_manager:3.1.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:communication_manager:4.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:communication_manager:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-08-17T01:29Z"}