Avaya : Security Vulnerabilities, CVEs, Published In 2006
BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.
Max CVSS
5.5
EPSS Score
0.04%
Published
2006-04-04
Updated
2024-02-09
The Internet Key Exchange version 1 (IKEv1) implementation in Avaya VSU 100, 2000, 7500, 10000, and CSU 5000, when running IPSec, allows remote attackers to cause a denial of service (crash) via certain IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to.
Max CVSS
5.0
EPSS Score
0.28%
Published
2006-02-15
Updated
2008-09-05
2 vulnerabilities found