Avaya WinPDM < 3.8.5 Multiple Vulnerabilities

This script is Copyright (C) 2011-2015 Tenable Network Security, Inc.

Synopsis :

A phone administration application on the remote Windows host has
multiple vulnerabilities.

Description :

The version of Avaya WinPDM installed on the remote host has multiple
network services affected by memory corruption vulnerabilities. A
remote, unauthenticated attacker could exploit these issues to execute
arbitrary code.

This plugin determines if the vulnerable software is installed by
checking the file version of the Unite Host Router component of

See also :


Solution :

Upgrade to Avaya WinPDM 3.8.5 (Unite Host Router or later.

Risk factor :

Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.3
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 54831 ()

Bugtraq ID: 47947