CVE-2005-0506

Avaya IP Office Phone Manager - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-0506. PoCs published by Adrian _pagvac_ Pastor.

AI-analyzed exploit summary This exploit reads sensitive data (username, password, and PBX IP address) from the Windows Registry where Avaya IP Office Phone Manager stores it in cleartext. It demonstrates the vulnerability by querying registry keys under HKEY_LOCAL_MACHINE.

Description

The Avaya IP Office Phone Manager, and other products such as the IP Softphone, stores sensitive data in cleartext in a registry key, which allows local and possibly remote users to steal usernames and passwords and impersonate other users via keys such as Avaya\IP400\Generic.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Adrian _pagvac_ Pastor · c++localwindows
https://www.exploit-db.com/exploits/839

This exploit reads sensitive data (username, password, and PBX IP address) from the Windows Registry where Avaya IP Office Phone Manager stores it in cleartext. It demonstrates the vulnerability by querying registry keys under HKEY_LOCAL_MACHINE.

Classification
Working Poc 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Avaya IP Office Phone Manager version 2.013
Auth required
Prerequisites: Local access to the Windows Registry · Sufficient permissions to read HKEY_LOCAL_MACHINE\SOFTWARE\AVAYA\IP400\GENERIC
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=110909733831694&w=2
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=110910486128709&w=2

Scores

EPSS 0.0378
EPSS Percentile 88.4%

Details

Status published
Products (2)
avaya/ip_office_phone_manager
avaya/ip_soft_phone
Published Mar 14, 2005
Tracked Since Feb 18, 2026