Com2001 » Alexis Server : Security Vulnerabilities, CVEs, CVSS score >= 3
Web Access component for COM2001 Alexis 2.0 and 2.1 in InternetPBX sends username and voice mail passwords in the clear via a Java applet that sends the information to port 8888 of the server, which could allow remote attackers to steal the passwords via sniffing.
Max CVSS
7.5
EPSS Score
0.37%
Published
2001-09-27
Updated
2008-09-10
Alexis 2.0 and 2.1 in COM2001 InternetPBX stores voicemail passwords in plain text in the com2001.ini file, which could allow local users to make long distance calls as other users.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-09-27
Updated
2008-09-05
2 vulnerabilities found