42 matches found
EUVD-2008-6527
Malware in sbrugna...
EUVD-2007-5612
Malware in sbrugna...
EUVD-2008-5842
Malware in sbrugna...
Nortel Networks Multiple UNIStim VoIP Products Remote Eavesdrop Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/26120/info Multiple Nortel Networks UNIStim VoIP telephony products are prone to a remote vulnerability that may allow eavesdropping. Attackers can exploit this issue to open an audio channel with the phone's microphone...
Nortel UNIStim IP Phone - Remote Ping Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28004/info Nortel UNIStim IP Phone products are prone to a remote denial-of-service vulnerability because the software fails to properly handle unexpected network datagrams. Successfully exploiting this issue allows remot...
Nortel Networks UNIStim IP Softphone 2050 RTCP Port Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/26118/info Nortel Networks UNIStim IP Softphone is prone to a buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it to an insufficiently sized memory...
CVE-2008-6564
Nortel UNIStim protocol, as used in Communication Server 1000 and other products, uses predictable sequence numbers, which allows remote attackers to hijack sessions via sniffing or brute force attacks...
Design/Logic Flaw
Nortel UNIStim protocol, as used in Communication Server 1000 and other products, uses predictable sequence numbers, which allows remote attackers to hijack sessions via sniffing or brute force attacks...
CVE-2008-6564
The CVE-2008-6564 entry describes a vulnerability in the Nortel UNIStim protocol (used in Communication Server 1000 and related products) where predictable sequence numbers enable session hijacking. This could allow remote attackers to hijack sessions by sniffing traffic or brute-forcing sequence...
CVE-2008-6564
Nortel UNIStim protocol, as used in Communication Server 1000 and other products, uses predictable sequence numbers, which allows remote attackers to hijack sessions via sniffing or brute force attacks...
CVE-2008-5872
Multiple unspecified vulnerabilities in the UNIStim File Transfer Protocol UFTP processing in IP Client Manager IPCM in Nortel Multimedia Communication Server MSC 5100 3.0.13 allow remote attackers to cause a denial of service device outage via a UFTP message that has a negative block size or oth...
CVE-2008-5872
Multiple unspecified vulnerabilities in the UNIStim File Transfer Protocol UFTP processing in IP Client Manager IPCM in Nortel Multimedia Communication Server MSC 5100 3.0.13 allow remote attackers to cause a denial of service device outage via a UFTP message that has a negative block size or oth...
CVE-2008-4999
Nortel Networks UNIStim IP Phone 0604DAS allows remote attackers to cause a denial of service crash via a long ping packet "ping of death". NOTE: this issue could not be reproduced by a third party, who tested it on 0604DAD. In addition, the original researcher was not able to reliably reproduce...
Design/Logic Flaw
Nortel Networks UNIStim IP Phone 0604DAS allows remote attackers to cause a denial of service crash via a long ping packet "ping of death". NOTE: this issue could not be reproduced by a third party, who tested it on 0604DAD. In addition, the original researcher was not able to reliably reproduce...
CVE-2008-4999
The CVE-2008-4999 entry concerns Nortel Networks UNIStim IP Phone 0604DAS and a remote denial-of-service via oversized ICMP packets (ping of death). Public sources confirm the effect is a crash from long ping payloads; however, reproducibility is inconsistent (the issue could not be reliably repr...
CVE-2008-4999
Nortel Networks UNIStim IP Phone 0604DAS allows remote attackers to cause a denial of service crash via a long ping packet "ping of death". NOTE: this issue could not be reproduced by a third party, who tested it on 0604DAD. In addition, the original researcher was not able to reliably reproduce...
Nortel MCS 5100 UFTP多个拒绝服务漏洞
BUGTRAQ ID: 31633 CNCAN ID:CNCAN-2008100911 Nortel MCS 5100是一款多媒体通信服务器。 Nortel MCS 5100使用UNIStim文件传送协议UFTP,UFTP可在可靠的UDP上通过UNIStim控制通道来传送。处理UFTP消息存在缺陷,控制多个连接细节字段Connection Details fields的值可导致多个拒绝服务攻击。 Nortel Networks MCS 5100 3.0.13 Nortel Networks MCS 5100 3.0 MCS 5100 3.5.9已经修正此漏洞:...
Nortel Networks Communication Server多个安全漏洞
BUGTRAQ ID: 28691 Nortel Networks的Communication Server是基于服务器的IP PBX设备,可提供成熟的网络电话服务。 Nortel Communication Server中存在多个安全漏洞,允许恶意用户绕过某些安全限制、泄露敏感信息、导致拒绝服务或入侵有漏洞的系统。 1 处理UNIStim IT序列号中的错误可能导致伪造UNIStim客户端命令,成功攻击要求能够猜测到正确的序列号。 2 16个硬编码的帐号和口令允许写访问受影响的系统。 3 命令交换机制中的错误可能导致注入任意命令。 Novell Communication Server...
Nortel UNIStim IP Phone - Remote Ping Denial of Service
Nortel UNIStim IP Phone - Remote Ping Denial of Service source: https://www.securityfocus.com/bid/28004/info Nortel UNIStim IP Phone products are prone to a remote denial-of-service vulnerability because the software fails to properly handle unexpected network datagrams. Successfully exploiting...
Nortel UNIStim IP Phone - Remote Ping Denial of Service
source: https://www.securityfocus.com/bid/28004/info Nortel UNIStim IP Phone products are prone to a remote denial-of-service vulnerability because the software fails to properly handle unexpected network datagrams. Successfully exploiting this issue allows remote attackers to crash affected...