CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-6797

The server in Mitel NuPoint Messenger R11 and R3 sends usernames and passwords in cleartext to Exchange servers, which allows remote attackers to obtain sensitive information by sniffing the network.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.022

EPSS Ranking 84.1%

CVSS Severity

CVSS v2 Score 7.8

References

http://www.kb.cert.org/vuls/id/576996
http://www.mitel.com/resources/NuPoint_and_Exchange.pdf
http://www.securityfocus.com/bid/34847
http://www.kb.cert.org/vuls/id/576996
http://www.mitel.com/resources/NuPoint_and_Exchange.pdf
http://www.securityfocus.com/bid/34847

Products affected by CVE-2008-6797

Mitel » Mitel Nupoint Messenger » Version: r11

cpe:2.3:a:mitel:mitel_nupoint_messenger:r11
Mitel » Mitel Nupoint Messenger » Version: r3

cpe:2.3:a:mitel:mitel_nupoint_messenger:r3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-6797

Products

Pricing

Contact Us