RSS   Vulnerabilities for 'Alexis server'   RSS

2001-09-27
 
CVE-2001-1254

 

 
Web Access component for COM2001 Alexis 2.0 and 2.1 in InternetPBX sends username and voice mail passwords in the clear via a Java applet that sends the information to port 8888 of the server, which could allow remote attackers to steal the passwords via sniffing.

 
 
CVE-2001-1253

 

 
Alexis 2.0 and 2.1 in COM2001 InternetPBX stores voicemail passwords in plain text in the com2001.ini file, which could allow local users to make long distance calls as other users.

 


Copyright 2017, cxsecurity.com

 

Back to Top