Lucene search
K

8 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.24 views

Nortel Networks Multiple UNIStim VoIP Products Remote Eavesdrop Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26120/info Multiple Nortel Networks UNIStim VoIP telephony products are prone to a remote vulnerability that may allow eavesdropping. Attackers can exploit this issue to open an audio channel with the phone's microphone...

7.1AI score
Exploits0
Prion
Prion
added 2007/10/23 5:46 p.m.18 views

Design/Logic Flaw

The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP Phone, Business Communications Manager BCM, and other product lines allow remote attackers to eavesdrop on the physical environment via an Open Audio Stream message that enables "surveillance mode."...

4.3CVSS7AI score0.03134EPSS
Exploits1References9Affected Software2
NVD
NVD
added 2007/10/23 5:46 p.m.19 views

CVE-2007-5637

The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP Phone, Business Communications Manager BCM, and other product lines allow remote attackers to eavesdrop on the physical environment via an Open Audio Stream message that enables "surveillance mode."...

4.3CVSS6.5AI score0.03134EPSS
Exploits1References9
Cvelist
Cvelist
added 2007/10/23 5:0 p.m.26 views

CVE-2007-5637

The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP Phone, Business Communications Manager BCM, and other product lines allow remote attackers to eavesdrop on the physical environment via an Open Audio Stream message that enables "surveillance mode."...

6.5AI score0.03134EPSS
Exploits1References9
securityvulns
securityvulns
added 2007/10/20 12:0 a.m.38 views

Nortel IP Phone Surveillance Mode

COMPASS SECURITY ADVISORY http://www.csnc.ch/ Product: IP Phone Vendor: Nortel Subject: IP Phone Surveillance Mode Risk: High Effect: Currently exploitable Author: Daniel Stirnimann daniel.stirnimann at csnc dot ch Date: October, 18th 2007 Introduction: ------------- An IP phone can be put into...

Exploits0
seebug.org
seebug.org
added 2007/10/20 12:0 a.m.35 views

Nortel Networks多个UNIStim VoIP产品远程窃听漏洞

Nortel IP Phones是一款IP电话应用方案。 Nortel IP Phones存在设计错误,远程攻击者可以利用漏洞对设备进行窃听,导致敏感信息泄露。 如果正确的UNIStim消息发送给IP电话,IP电话可进入surveillance模式,UNIStim消息ID必须匹配信号服务器和IP电话间的可预期ID,协议使用16位大小作为ID数字,如果恶意用户发送65536个所有可能ID号的伪造UNIStim消息,可导致消息被窃听,造成敏感信息泄露。 Nortel Networks Universal Access - IP 0 Nortel Networks Survivable...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/10/18 12:0 a.m.22 views

Nortel Networks - Multiple UNIStim VoIP Products Remote Eavesdrop Vulnerabilities

Nortel Networks - Multiple UNIStim VoIP Products Remote Eavesdrop Vulnerabilities source: https://www.securityfocus.com/bid/26120/info Multiple Nortel Networks UNIStim VoIP telephony products are prone to a remote vulnerability that may allow eavesdropping. Attackers can exploit this issue to ope...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/10/18 12:0 a.m.47 views

Nortel Networks - Multiple UNIStim VoIP Products Remote Eavesdrop Vulnerabilities

source: https://www.securityfocus.com/bid/26120/info Multiple Nortel Networks UNIStim VoIP telephony products are prone to a remote vulnerability that may allow eavesdropping. Attackers can exploit this issue to open an audio channel with the phone's microphone. This will allow attackers to...

7.4AI score
Exploits0
Rows per page
Query Builder