Lucene search

MitreCVE-2008-6576

HistoryApr 01, 2009 - 10:30 p.m.

CVE-2008-6576

2009-04-0122:30:01

mitre

web.nvd.nist.gov

nortel

cs1k

ftp service

vulnerability

denial of service

resource exhaustion

cve-2008-6576

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.8

Confidence

Low

EPSS

0.035

Percentile

91.7%

JSON

Unspecified vulnerability in the “session limitation technique” in the FTP service on Nortel Communications Server 1000 (CS1K) 4.50.x, when running on VGMC or signaling nodes, allows remote attackers to cause a denial of service (resource exhaustion and failed updates) via unknown vectors that causes consumption of all available sessions.

Affected configurations

Nvd

Node

nortelcs1000Match4.50

VendorProductVersionCPE
nortelcs10004.50cpe:2.3:h:nortel:cs1000:4.50:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
nortel	cs1000	4.50	cpe:2.3:h:nortel:cs1000:4.50:::::::*

References

osvdb.org/44380

secunia.com/advisories/29747

securitytracker.com/id?1019845

support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=713455

www.securityfocus.com/bid/28691

www.voipshield.com/research-details.php?id=11

exchange.xforce.ibmcloud.com/vulnerabilities/41804

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.8

Confidence

Low

EPSS

0.035

Percentile

91.7%

JSON

Related for CVE-2008-6576