Lucene search
MitreCVE-2007-2334HistoryApr 27, 2007 - 4:19 p.m.
CVE-2007-2334
2007-04-2716:19:00
mitre
web.nvd.nist.gov
22
nortel
vpn
router
contivity
1000
2000
4000
5000
html files
verification tags
remote attackers
administration interface
device configuration
security vulnerability
cve-2007-2334
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.6
Confidence
Low
EPSS
0.033
Percentile
91.3%
Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 5_05.149, 5_05.3xx before 5_05.304, and 6.x before 6_05.140 has two template HTML files lacking certain verification tags, which allows remote attackers to access the administration interface and change the device configuration via certain requests.
Affected configurations
Node
nortelcontivityMatch1000_vpn_switch
ORnortelcontivityMatch2000_vpn_switch
ORnortelcontivityMatch4000_vpn_switch
ORnortelvpn_router_5000
| Vendor | Product | Version | CPE |
|---|---|---|---|
| nortel | contivity | 1000_vpn_switch | cpe:2.3:h:nortel:contivity:1000_vpn_switch:*:*:*:*:*:*:* |
| nortel | contivity | 2000_vpn_switch | cpe:2.3:h:nortel:contivity:2000_vpn_switch:*:*:*:*:*:*:* |
| nortel | contivity | 4000_vpn_switch | cpe:2.3:h:nortel:contivity:4000_vpn_switch:*:*:*:*:*:*:* |
| nortel | vpn_router_5000 | * | cpe:2.3:h:nortel:vpn_router_5000:*:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2007-04-27 16:19:00
cvelist
cvelist
CVE-2007-2334
2007-04-27 16:00:00
nvd
nvd
CVE-2007-2334
2007-04-27 16:19:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.6
Confidence
Low
EPSS
0.033
Percentile
91.3%
Related for CVE-2007-2334