CVE-2008-5871

2009-01-0818:13:00

mitre

www.cve.org

6.8 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

79.4%

JSON

Nortel Multimedia Communication Server (MSC) 5100 3.0.13 does not verify credentials during call placement, which allows remote attackers to spoof and redirect VoIP calls, possibly related to the snoop command.

References

secunia.com/advisories/32203

support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=775223

voipshield.com/research-details.php?id=119

www.securityfocus.com/bid/31640

www.vupen.com/english/advisories/2008/2779

exchange.xforce.ibmcloud.com/vulnerabilities/45752