Avaya IP Office one-X Portal 9.0 UserConfigurationService memory corruption
CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
---|---|---|
8.7 | $0-$5k | 0.00 |
A vulnerability was found in Avaya IP Office one-X Portal 9.0 and classified as critical. Affected by this issue is an unknown functionality of the component UserConfigurationService. The manipulation with an unknown input leads to a memory corruption vulnerability. Using CWE to declare the problem leads to CWE-119. The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer. Impacted is confidentiality, integrity, and availability. Avaya IP Office one-X Portal is a server application that allows IP Office users to control their phone and various telephony settings through a web browser.
The weakness was presented 03/13/2014 by Andrea Micalizzi (rgod) as ASA-2014-110 as confirmed advisory (Website) via ZDI (Zero Day Initiative). The advisory is shared for download at downloads.avaya.com. The public release was coordinated in cooperation with the vendor. The exploitation is known to be easy. The attack may be launched remotely. No form of authentication is required for exploitation. There are neither technical details nor an exploit publicly available.
Applying the patch SP2 is able to eliminate this problem. A possible mitigation has been published immediately after the disclosure of the vulnerability.
The vulnerability is also documented in the vulnerability database at X-Force (94498). zerodayinitiative.com is providing further details. See 67207 for similar entry.
Product
Vendor
Name
Version
License
CPE 2.3
CPE 2.2
CVSSv4
VulDB CVSS-B Score: 🔍VulDB CVSS-BT Score: 🔍
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 10.0VulDB Meta Temp Score: 8.7
VulDB Base Score: 10.0
VulDB Temp Score: 8.7
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
AV | AC | Au | C | I | A |
---|---|---|---|---|---|
💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
unlock | unlock | unlock | unlock | unlock | unlock |
unlock | unlock | unlock | unlock | unlock | unlock |
unlock | unlock | unlock | unlock | unlock | unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
Exploiting
Class: Memory corruptionCWE: CWE-119
CAPEC: 🔍
ATT&CK: 🔍
Local: No
Remote: Yes
Availability: 🔍
Status: Unproven
Price Prediction: 🔍
Current Price Estimation: 🔍
0-Day | unlock | unlock | unlock | unlock |
---|---|---|---|---|
Today | unlock | unlock | unlock | unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: PatchStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Patch: SP2
Timeline
03/13/2014 🔍03/13/2014 🔍
04/08/2014 🔍
07/20/2014 🔍
04/16/2018 🔍
Sources
Vendor: avaya.comAdvisory: ASA-2014-110
Researcher: Andrea Micalizzi (rgod)
Status: Confirmed
Coordinated: 🔍
X-Force: 94498, High Risk
SecurityFocus: 66695 - Avaya IP Office One-X Portal Multiple Remote Code Execution Vulnerabilities
Misc.: 🔍
See also: 🔍
Entry
Created: 07/21/2014 00:03Updated: 04/16/2018 11:48
Changes: 07/21/2014 00:03 (49), 04/16/2018 11:48 (6)
Complete: 🔍
No comments yet. Languages: en.
Please log in to comment.