VoIPshield Systems: Research

VoIPshield Systems: Research http://www.voipshield.com/research-rss.php en-ca Wed, 19 Nov 2008 17:29:07 -0500 Microsoft Communicator Emoticon Denial of Service Denial of Service Tue, 11 Nov 2008 00:00:00 -0500 Microsoft Communicator Real-time Transport Control Protocol Report Block Denial of Service Denial of Service Tue, 11 Nov 2008 00:00:00 -0500 Microsoft Communicator INVITE Flood Denial of Service Denial of Service Tue, 11 Nov 2008 00:00:00 -0500 Avaya Communication Manager Web Administration Interface - Privilege Elevation Vulnerability Code Execution Wed, 08 Oct 2008 00:00:00 -0400 Nortel Multimedia Communications Server 5100 Call Spoofing and Redirection Unauthorized Access Wed, 08 Oct 2008 00:00:00 -0400 Nortel Multimedia Communications Server 5100 IP Client Manager UNIStim File Transfer Protocol - Connection Details Denial of Service Wed, 08 Oct 2008 00:00:00 -0400 Avaya Communication Manager Web Administration Interface - Code Execution Vulnerability Code Execution Wed, 08 Oct 2008 00:00:00 -0400 Avaya Communication Manager Unauthorized Web Access Unauthorized Access Wed, 08 Oct 2008 00:00:00 -0400 Avaya one-X Desktop Edition Session Initiation Protocol Denial of Service Denial of Service Wed, 08 Oct 2008 00:00:00 -0400 Avaya IP Softphone H.323 Denial of Service Denial of Service Wed, 08 Oct 2008 00:00:00 -0400 Cisco Unity Authentication Bypass Unauthorized Access Wed, 08 Oct 2008 00:00:00 -0400 Cisco Unity Session Exhaustion Denial of Service Denial of Service Wed, 08 Oct 2008 00:00:00 -0400 Cisco Unity Stored Cross-Site Scripting Vulnerability Code Execution Wed, 08 Oct 2008 00:00:00 -0400 Cisco Unity Multiple Denial of Service Vulnerabilities Denial of Service Wed, 08 Oct 2008 00:00:00 -0400 Cisco Unity Reports Information Disclosure Unauthorized Access Wed, 08 Oct 2008 00:00:00 -0400 CS1000 Oversized Command DoS Denial of Service Wed, 25 Jun 2008 00:00:00 -0400 MCS5100 Wireless Client Manager Session Initiation Protocol Proxy DoS Denial of Service Wed, 25 Jun 2008 00:00:00 -0400 SIP Multimedia PC Client Unlimited Session DoS Denial of Service Wed, 25 Jun 2008 00:00:00 -0400 SIP Multimedia PC Client Unauthenticated Cross Domain Access Unauthorized Access Wed, 25 Jun 2008 00:00:00 -0400 Call Manager CTIManager DoS Denial of Service Wed, 25 Jun 2008 00:00:00 -0400 Unified Communications Manager CTIManager DoS Denial of Service Wed, 25 Jun 2008 00:00:00 -0400 Serviceability Monitoring Tool Unauthenticated Access to Critical Services Function Unauthorized Access Wed, 25 Jun 2008 00:00:00 -0400 Serviceability Monitoring Tool Unauthenticated Access to Search Lines Function Unauthorized Access Wed, 25 Jun 2008 00:00:00 -0400 Serviceability Monitoring Tool Unauthenticated Access to Phone Device Search Function Unauthorized Access Wed, 25 Jun 2008 00:00:00 -0400 Serviceability Monitoring Tool Unauthenticated Access to Server Processes Function Unauthorized Access Wed, 25 Jun 2008 00:00:00 -0400 SIP Enablement Service View/Restore Data Configuration Privilege Elevation Code Execution Wed, 25 Jun 2008 00:00:00 -0400 SIP Enablement Service View/Restore Data Local Configuration Arbitrary Command Execution Code Execution Wed, 25 Jun 2008 00:00:00 -0400 Communication Manager View/Restore Data Credential Privilege Elevation Code Execution Wed, 25 Jun 2008 00:00:00 -0400 Communication Manager System Log Viewer Arbitrary Command Execution Code Execution Wed, 25 Jun 2008 00:00:00 -0400 SIP Enablement Service Web Interface Application Server Configuration Disclosure Unauthorized Access Wed, 25 Jun 2008 00:00:00 -0400 SIP Enablement Service Web Interface Database Server Configuration Disclosure Unauthorized Access Wed, 25 Jun 2008 00:00:00 -0400 SIP Enablement Service Web Interface Password Decryption Utility Disclosure Unauthorized Access Wed, 25 Jun 2008 00:00:00 -0400 SIP Enablement Service Web Interface Database Password Decryption Utility Disclosure Unauthorized Access Wed, 25 Jun 2008 00:00:00 -0400 SIP Enablement Service Web Interface Password Encryption Utility Disclosure Unauthorized Access Wed, 25 Jun 2008 00:00:00 -0400 SIP Enablement Service Web Interface Certificate Utility Disclosure Unauthorized Access Wed, 25 Jun 2008 00:00:00 -0400 SIP Enablement Service Web Interface Objects Folder Script Execution Unauthorized Access Wed, 25 Jun 2008 00:00:00 -0400 SIP Enablement Service Web Interface Default Application Execution Unauthorized Access Wed, 25 Jun 2008 00:00:00 -0400 SIP Enablement Service Web Interface States Folder Script Execution Unauthorized Access Wed, 25 Jun 2008 00:00:00 -0400 SIP Enablement Service Web Interface Server Configuration Information Application Execution Unauthorized Access Wed, 25 Jun 2008 00:00:00 -0400 SIP Enablement Service Web Interface Unrestricted Help Access Information Gathering Wed, 25 Jun 2008 00:00:00 -0400 Message Storage Server SFTP Remote Storage Command Execution Code Execution Wed, 25 Jun 2008 00:00:00 -0400 Message Storage Server FTP Remote Storage Arbitrary Command Execution Code Execution Wed, 25 Jun 2008 00:00:00 -0400 Message Storage Server DNS Lookup Arbitrary Command Execution Code Execution Wed, 25 Jun 2008 00:00:00 -0400 Message Storage Server Ping Arbitrary Command Execution Code Execution Wed, 25 Jun 2008 00:00:00 -0400 Message Storage Server Network Configuration Arbitrary Command Execution Code Execution Wed, 25 Jun 2008 00:00:00 -0400 Message Storage Server External Hosts Configuration Arbitrary Command Execution Code Execution Wed, 25 Jun 2008 00:00:00 -0400 Message Storage Server External Hosts Add/Change Configuration Arbitrary Command Execution Code Execution Wed, 25 Jun 2008 00:00:00 -0400 Message Storage Server Windows Domain Configuration Arbitrary Command Execution Code Execution Wed, 25 Jun 2008 00:00:00 -0400 Message Storage Server Time Configuration Arbitrary Command Execution Code Execution Wed, 25 Jun 2008 00:00:00 -0400 Message Storage Server Alarm Configuration Arbitrary Command Execution Code Execution Wed, 25 Jun 2008 00:00:00 -0400 Message Storage Command Line History Arbitrary Command Execution Code Execution Wed, 25 Jun 2008 00:00:00 -0400 Message Storage Server Maintenance Arbitrary Command Execution Code Execution Wed, 25 Jun 2008 00:00:00 -0400 Message Storage Server Events Arbitrary Command Execution Code Execution Wed, 25 Jun 2008 00:00:00 -0400 IM SMS Route Privilege Elevation Code Execution Tue, 01 Apr 2008 00:00:00 -0400 IM SMS Hostname Privilege Elevation Code Execution Tue, 01 Apr 2008 00:00:00 -0400 UCM Multiple Hardcoded Passwords Unauthorized Access Tue, 01 Apr 2008 00:00:00 -0400 CS1000 Multiple Hardcoded Passwords Unauthorized Access Tue, 01 Apr 2008 00:00:00 -0400 IM SMS Ping Code Execution Code Execution Tue, 01 Apr 2008 00:00:00 -0400 CS1000 FTP Session Limit Exhaustion Denial of Service Tue, 01 Apr 2008 00:00:00 -0400 IM SMS Log Viewer Code Execution Code Execution Tue, 01 Apr 2008 00:00:00 -0400 IM SMS Arbitrary File Deletion Unauthorized Access Tue, 01 Apr 2008 00:00:00 -0400 IM SMS File Existence Flaw Unauthorized Access Tue, 01 Apr 2008 00:00:00 -0400 SES SIP SQL Injection Code Execution Tue, 01 Apr 2008 00:00:00 -0400 SES SIP SQL Denial of Service Denial of Service Tue, 01 Apr 2008 00:00:00 -0400 SES SIP Credential Reuse Unauthorized Access Tue, 01 Apr 2008 00:00:00 -0400 SPIM Unauthenticated SQL Injection Code Execution Tue, 01 Apr 2008 00:00:00 -0400 SPIM Permissions SQL Injection Code Execution Tue, 01 Apr 2008 00:00:00 -0400 Nortel UNIStim IT Sequence Number Intercept Unauthorized Access Tue, 01 Apr 2008 00:00:00 -0400 Web Application Structure Disclosure Information Gathering Tue, 01 Apr 2008 00:00:00 -0400 Multiple Command Injection Vulnerabilities Unauthorized Access Tue, 01 Apr 2008 00:00:00 -0400 DRF Cancel Backup Command Injection Denial of Service Tue, 01 Apr 2008 00:00:00 -0400 DRF Save Backup Features Command Injection Denial of Service Tue, 01 Apr 2008 00:00:00 -0400 DRF Restore Command Directory Creation Code Execution Tue, 01 Apr 2008 00:00:00 -0400 DRF Get Features List Command Overflow Code Execution Tue, 01 Apr 2008 00:00:00 -0400 DRF Change Destination Command Injection Unauthorized Access Tue, 01 Apr 2008 00:00:00 -0400 DRF Restore Command Injection Unauthorized Access Tue, 01 Apr 2008 00:00:00 -0400 DRF Execute Backup Command Injection Unauthorized Access Tue, 01 Apr 2008 00:00:00 -0400 DRF List Backup File Existence Flaw Information Gathering Tue, 01 Apr 2008 00:00:00 -0400 DRF Get Destination Command Injection Information Gathering Tue, 01 Apr 2008 00:00:00 -0400 DRF Show History Command Injection Information Gathering Tue, 01 Apr 2008 00:00:00 -0400 DRF Version Command Injection Information Gathering Tue, 01 Apr 2008 00:00:00 -0400 DRF Get Features List Command Injection Information Gathering Tue, 01 Apr 2008 00:00:00 -0400 DRF Get Registration Command Injection Information Gathering Tue, 01 Apr 2008 00:00:00 -0400 DRF Get Schedule Command Injection Information Gathering Tue, 01 Apr 2008 00:00:00 -0400 Address Book SQL Injection Code Execution Tue, 01 Apr 2008 00:00:00 -0400 Unauthenticated Alarm Application Access Unauthorized Access Tue, 01 Apr 2008 00:00:00 -0400 Unauthenticated Cisco Serviceability Access Unauthorized Access Tue, 01 Apr 2008 00:00:00 -0400 Unauthenticated Plugin Access Unauthorized Access Tue, 01 Apr 2008 00:00:00 -0400 Unauthenticated Call Server Link Access Information Gathering Tue, 01 Apr 2008 00:00:00 -0400 Unauthenticated pktCap Access Information Gathering Tue, 01 Apr 2008 00:00:00 -0400 Unauthenticated License File Access Unauthorized Access Tue, 01 Apr 2008 00:00:00 -0400 Unauthenticated Extension Mobility Web Access Information Gathering Tue, 01 Apr 2008 00:00:00 -0400 Unencrypted Authenticated Access Information Gathering Tue, 01 Apr 2008 00:00:00 -0400 Unauthenticated Balancer Access Unauthorized Access Tue, 01 Apr 2008 00:00:00 -0400 SKINNY Registration DoS Denial of Service Tue, 01 Apr 2008 00:00:00 -0400 Unauthenticated Call Flooding Denial of Service Tue, 01 Apr 2008 00:00:00 -0400