RSS   Vulnerabilities for 'Meridian option 61c'   RSS

2007-10-23
 
CVE-2007-5640

CWE-noinfo
 

 
The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP Phone, Business Communications Manager (BCM), Mobile Voice Client, and other product lines, allow remote attackers to block calls and force re-registration via a resume message to the Signaling Server that has a spoofed source IP address for the phone. NOTE: the attack is more disruptive if a new spoofed resume message is sent after each re-registration.

 
 
CVE-2007-5638

CWE-310
 

 
The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP Phone, Business Communications Manager (BCM), and other product lines, use only 65536 different values in the 32-bit ID number field of an RUDP datagram, which makes it easier for remote attackers to guess the RUDP ID and spoof messages. NOTE: this can be leveraged for an eavesdropping attack by sending many Open Audio Stream messages.

 
 
CVE-2007-5637

CWE-200
 

 
The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP Phone, Business Communications Manager (BCM), and other product lines allow remote attackers to eavesdrop on the physical environment via an Open Audio Stream message that enables "surveillance mode." NOTE: issues relating to a small ID number space can be leveraged to make this attack easier.

 
2007-10-19
 
CVE-2007-5591

CWE-Other
 

 
The CS1000 signaling server in Nortel Enterprise VoIP-Core-CS 1000M Chassis/Cabinet, Enterprise VoIP-Core-CS 1000E and 1000S, Meridian-Core-Option 11C Chassis and Cabinet, and Meridian-Core-Option 51C, 61C, and 81C allows remote attackers to cause a denial of service (telephony application outage) via a flood of packets to Embedded LAN (ELAN) ports.

 

 >>> Vendor: Nortel 70 Products
Communications server
Optivity net architect
Contivity
Nautica marlin
Alteon acedirector
Cvx 1800 multi-service access switch
Succession communication server 2000
Business communications manager
802.11 wireless ip gateway
Succession communication server 1000
Ip softphone 2050
Mobile voice client 2050
Optivity telephony manager
Symposium web centre portal
Symposium web client
Media communication server 5100
Media communication server 5200
Media processing server
Periphonics
Symposium agent
Symposium network control center
Symposium tapi service provider
Symposium call center server
Symposium express call center
Wlan access point 2220
Wlan access point 2221
Wlan access point 2225
Callpilot
Contact center
7220 wlan access point
7250 wlan access point
Ethernet routing switch 1612
Ethernet routing switch 1624
Ethernet routing switch 1648
Optical metro 5000
Optical metro 5100
Optical metro 5200
Survivable remote gateway
Universal signaling point
Vpn router 1010
Vpn router 1050
Vpn router 1100
Vpn router 1700
Vpn router 1740
Vpn router 2700
Vpn router 5000
Vpn router 600
Ssl vpn
Callpilot server
Net direct client
Meridian mail
Vpn router 1750
Vpn router portfolio
Pc client soft phone sip
Sip softphone
Meridian option 11c
Meridian option 51c
Meridian option 61c
Meridian option 81c
Voip-core-cs
Centrex ip client manager
Centrex ip element manager
Meridian sl100
Multimedia communications server
Sip multimedia pc client
Unistim ip phone
Multimedia communication server 5100
Communication server 1000
Unistim protocol
Cs1000


Copyright 2024, cxsecurity.com

 

Back to Top