Vulnerabilities > CVE-2010-3279 - Configuration vulnerability in Alcatel-Lucent Ccagent and Omnitouch Contact Center

047910
CVSS 7.6 - HIGH
Attack vector
ADJACENT_NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
PARTIAL
Availability impact
COMPLETE

Summary

The default configuration of the CCAgent option before 9.0.8.4 in the management server (aka TSA) component in Alcatel-Lucent OmniTouch Contact Center Standard Edition enables maintenance access, which allows remote attackers to monitor or reconfigure Contact Center operations via vectors involving TSA_maintenance.exe.

Vulnerable Configurations

Part Description Count
Application
Alcatel-Lucent
3

Common Weakness Enumeration (CWE)