Secunia Security Advisory – Avaya has acknowledged some vulnerabilities in Avaya CMS, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and by malicious people to cause a DoS, poison the DNS cache, bypass certain security restrictions, disclose sensitive information, or compromise a vulnerable system.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/85237/sa37883.txt
Source: https://packetstormsecurity.com/files/85237/Secunia-Security-Advisory-37883.html