test

Products not Affected

The following products are not vulnerable as they do not include ImageMagick (updated 2016-05-12):

 

 

Product Name

Versions

3250

All

5300 series digital

All

5550 IP Console

All

6700i, 6800i (Praxis) Series SIP Phones

All

9000i Series (9480i, 9143i, 9133i, 9112i) SIP Phones

All

Aastra1560ip

All

Aastra2380ip

All

Aastra5300ip

All

BluStar8000i

All

BluStarClient (PC)

All

BluStarServer

All

CentergyVirtual Contact Center

All

Clearspan(Acme Packet Core SBC)

All

Clearspan(AudioCodeseSBC/ Gateway)

All

Clearspan(BroadworksPlatform)

All

Clearspan(EdgewatereSBC)

All

CMG

All

CPU2 / CPU2-S on Mitel 470 Controller

All

CT Gateway

All

D.N.A. Application Suite

All

DECToverIP(Mitel 100 |OpenCom100))

All

DECToverIP(OC1000)

All

ER Adviser

All

InAttend

All

MiCollabeAdvanced Messaging

All

MiCollab Client (Desktop/Web)

All

MiContactCenter Business

All

MiContactCenter Enterprise 9.1

All

MiContactCenter for Microsoft Lync

All

MiContactCenter Solidus 9.0 SP1

All

Mitel 700 (5.x SPX)

All

Mitel 800

All

Mitel Alarm Server

All

Mitel100/OpenComX320

All

Mitel5000 Gateway

All

MiVoice Business - MCD (PPC)

All

MiVoice Business Console

All

MiVoice Call Accounting

All

MiVoice Conference Unit

All

MiVoice IP Phones 53xx, 5540

All

MiVoice IP Phones 5560, 5505

All

MiVoice Office 250 (Mitel 5000)

All

MiVoice Office 400

All

MiVoice MX-ONE Provisioning Manager  (6.x SPX)

All

MiVoice MX-ONE SaaS Express or Express  (6.x SPX)

All

MX-ONE Manager Provisioning 5.0 SPX

All

MX-ONE Manager Telephony Server 5.0 SPX

All

MX-ONE Telephony Server 5.0 SPX

All

Open Interfaces Platform (OIP, OIPWebAdmin)

All

OpenCom1000 family

All

OpenPhone7x IP

All

PointSpan

All

Redirection and Configuration Service (RCS)

All

S850i (RevolabsOEM)

All

Secure IP Remote Management SRM

All

SIP-DECT

All

SIP-DECT Open Mobility Manager

All

SIP-DECT with Cloud-ID

All

SoliduseCare8.3 SP4

All

SX-200 ICP

All

Telephony Switch (TSW)

All

Telepo

All

 

 

The following products are not vulnerable as they do not use ImageMagick (updated 2016-05-13):

 

Product Name

Versions

MiCollab (MAS) / (SAS) /vMAs

All

MiCollab (MCA)

All

MiCollab Client Server

All

Mitel 700

All

Mitel Standard Linux (MSL)

All

MiVoice Border Gateway(MBG)

All

MiVoice Business - MCD for ISS

All

MiVoice Business -MXeServer

All

MiVoice Business Express

All

MiVoice Office 400 Virtual Appliance

All

MiXML

All

Multi-Instance Communications Director (MiCD)

All

MiVoice MX-ONEProvisioning Manager

6.x SPX

MiVoice MX-ONE SaaS Expressor Express

6.x SPX

MX-ONE Service Node

6.x SPX

MX-ONE Service Node Manager 

6.x SPX

MX-ONE Media Server

6.x SPX

OIG

All

Oria

All

Virtual MiVoice Communications Director (vMCD)

All

 

Products Under Investigation

Mitel continues to investigate these vulnerabilities to determine affected products and risk.  This security advisory will be updated during the course of the investigation as details become available.