Vulnerabilities > Alcatel Lucent > Omnipcx > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2011-03-08 | CVE-2011-0344 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Alcatel-Lucent Omnipcx Multiple stack-based buffer overflows in unspecified CGI programs in the Unified Maintenance Tool web interface in the embedded web server in the Communication Server (CS) in Alcatel-Lucent OmniPCX Enterprise before R9.0 H1.301.50 allow remote attackers to execute arbitrary code via crafted HTTP headers. | 5.8 |
| 2003-12-31 | CVE-2003-1108 | Unspecified vulnerability in Alcatel-Lucent Omnipcx 5.0 The Session Initiation Protocol (SIP) implementation in Alcatel OmniPCX Enterprise 5.0 Lx allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite. | 5.0 |
| 2002-05-31 | CVE-2002-0295 | Unspecified vulnerability in Alcatel-Lucent Omnipcx 4400 Alcatel OmniPCX 4400 installs files with world-writable permissions, which allows local users to reconfigure the system and possibly gain privileges. | 4.6 |
| 2002-05-31 | CVE-2002-0293 | Local Security vulnerability in Alcatel-Lucent Omnipcx 4400 FTP service in Alcatel OmniPCX 4400 allows the "halt" user to gain root privileges by modifying root's .profile file. | 6.2 |