Lucene search

K
cve[email protected]CVE-2008-5871
HistoryJan 08, 2009 - 6:30 p.m.

CVE-2008-5871

2009-01-0818:30:04
CWE-255
web.nvd.nist.gov
27
nortel
msc 5100
voip
spoofing
security vulnerability
cve-2008-5871

7 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.006 Low

EPSS

Percentile

79.4%

Nortel Multimedia Communication Server (MSC) 5100 3.0.13 does not verify credentials during call placement, which allows remote attackers to spoof and redirect VoIP calls, possibly related to the snoop command.

Affected configurations

NVD
Node
nortelmultimedia_communication_server_5100Match3.0.13

7 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.006 Low

EPSS

Percentile

79.4%

Related for CVE-2008-5871