Lucene search

[email protected]CVE-2008-5872

HistoryJan 08, 2009 - 6:30 p.m.

CVE-2008-5872

2009-01-0818:30:04

CWE-20

[email protected]

web.nvd.nist.gov

nortel

msc 5100

uftp

vulnerability

denial of service

device outage

remote attack

nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.1 High

AI Score

Confidence

High

0.025 Low

EPSS

Percentile

90.1%

JSON

Multiple unspecified vulnerabilities in the UNIStim File Transfer Protocol (UFTP) processing in IP Client Manager (IPCM) in Nortel Multimedia Communication Server (MSC) 5100 3.0.13 allow remote attackers to cause a denial of service (device outage) via a UFTP message that has a negative block size or other crafted Connection Details values.

Affected configurations

NVD

Node

nortelmultimedia_communication_server_5100Match3.0.13

CPENameOperatorVersion
nortel:multimedia_communication_server_5100nortel multimedia communication server 5100eq3.0.13

CPE	Name	Operator	Version
nortel:multimedia_communication_server_5100	nortel multimedia communication server 5100	eq	3.0.13

References

secunia.com/advisories/32203

support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=774845

voipshield.com/research-details.php?id=120

www.securityfocus.com/bid/31633

www.vupen.com/english/advisories/2008/2779

exchange.xforce.ibmcloud.com/vulnerabilities/45751

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.1 High

AI Score

Confidence

High

0.025 Low

EPSS

Percentile

90.1%

JSON

Related for CVE-2008-5872

prion1 cvelist1 nvd1