4.3

CVE-2007-5638

Exploit

EPSS 0.59%
Veröffentlicht 23.10.2007 17:46:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP Phone, Business Communications Manager (BCM), and other product lines, use only 65536 different values in the 32-bit ID number field of an RUDP datagram, which makes it easier for remote attackers to guess the RUDP ID and spoof messages.  NOTE: this can be leveraged for an eavesdropping attack by sending many Open Audio Stream messages.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Nortel ≫ Business Communications Manager Version50

   Nortel ≫ Multimedia Communication Server 5100
   Nortel ≫ Multimedia Communication Server 5200
   Nortel ≫ Communications Server Version1000e
   Nortel ≫ Communications Server Version1000m
   Nortel ≫ Communications Server Version1000s
   Nortel ≫ Communications Server Version2100
   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Ip Phone 2007
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Nortel ≫ Business Communications Manager Version50a

   Nortel ≫ Multimedia Communication Server 5100
   Nortel ≫ Multimedia Communication Server 5200
   Nortel ≫ Communications Server Version1000e
   Nortel ≫ Communications Server Version1000m
   Nortel ≫ Communications Server Version1000s
   Nortel ≫ Communications Server Version2100
   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Ip Phone 2007
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Nortel ≫ Business Communications Manager Version50e

   Nortel ≫ Multimedia Communication Server 5100
   Nortel ≫ Multimedia Communication Server 5200
   Nortel ≫ Communications Server Version1000e
   Nortel ≫ Communications Server Version1000m
   Nortel ≫ Communications Server Version1000s
   Nortel ≫ Communications Server Version2100
   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Ip Phone 2007
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Nortel ≫ Business Communications Manager Version200

   Nortel ≫ Multimedia Communication Server 5100
   Nortel ≫ Multimedia Communication Server 5200
   Nortel ≫ Communications Server Version1000e
   Nortel ≫ Communications Server Version1000m
   Nortel ≫ Communications Server Version1000s
   Nortel ≫ Communications Server Version2100
   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Ip Phone 2007
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Nortel ≫ Business Communications Manager Version400

   Nortel ≫ Multimedia Communication Server 5100
   Nortel ≫ Multimedia Communication Server 5200
   Nortel ≫ Communications Server Version1000e
   Nortel ≫ Communications Server Version1000m
   Nortel ≫ Communications Server Version1000s
   Nortel ≫ Communications Server Version2100
   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Ip Phone 2007
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Nortel ≫ Business Communications Manager Version1000

   Nortel ≫ Multimedia Communication Server 5100
   Nortel ≫ Multimedia Communication Server 5200
   Nortel ≫ Communications Server Version1000e
   Nortel ≫ Communications Server Version1000m
   Nortel ≫ Communications Server Version1000s
   Nortel ≫ Communications Server Version2100
   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Ip Phone 2007
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Nortel ≫ Business Communications Manager Versionsrg50

   Nortel ≫ Multimedia Communication Server 5100
   Nortel ≫ Multimedia Communication Server 5200
   Nortel ≫ Communications Server Version1000e
   Nortel ≫ Communications Server Version1000m
   Nortel ≫ Communications Server Version1000s
   Nortel ≫ Communications Server Version2100
   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Ip Phone 2007
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Nortel ≫ Business Communications Manager Versionsrg200

   Nortel ≫ Multimedia Communication Server 5100
   Nortel ≫ Multimedia Communication Server 5200
   Nortel ≫ Communications Server Version1000e
   Nortel ≫ Communications Server Version1000m
   Nortel ≫ Communications Server Version1000s
   Nortel ≫ Communications Server Version2100
   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Ip Phone 2007
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Nortel ≫ Centrex Ip Client Manager

   Nortel ≫ Multimedia Communication Server 5100
   Nortel ≫ Multimedia Communication Server 5200
   Nortel ≫ Communications Server Version1000e
   Nortel ≫ Communications Server Version1000m
   Nortel ≫ Communications Server Version1000s
   Nortel ≫ Communications Server Version2100
   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Ip Phone 2007
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Nortel ≫ Centrex Ip Element Manager

   Nortel ≫ Multimedia Communication Server 5100
   Nortel ≫ Multimedia Communication Server 5200
   Nortel ≫ Communications Server Version1000e
   Nortel ≫ Communications Server Version1000m
   Nortel ≫ Communications Server Version1000s
   Nortel ≫ Communications Server Version2100
   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Ip Phone 2007
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Nortel ≫ Meridian Option 11c

   Nortel ≫ Multimedia Communication Server 5100
   Nortel ≫ Multimedia Communication Server 5200
   Nortel ≫ Communications Server Version1000e
   Nortel ≫ Communications Server Version1000m
   Nortel ≫ Communications Server Version1000s
   Nortel ≫ Communications Server Version2100
   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Ip Phone 2007
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Nortel ≫ Meridian Option 51c

   Nortel ≫ Multimedia Communication Server 5100
   Nortel ≫ Multimedia Communication Server 5200
   Nortel ≫ Communications Server Version1000e
   Nortel ≫ Communications Server Version1000m
   Nortel ≫ Communications Server Version1000s
   Nortel ≫ Communications Server Version2100
   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Ip Phone 2007
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Nortel ≫ Meridian Option 61c

   Nortel ≫ Multimedia Communication Server 5100
   Nortel ≫ Multimedia Communication Server 5200
   Nortel ≫ Communications Server Version1000e
   Nortel ≫ Communications Server Version1000m
   Nortel ≫ Communications Server Version1000s
   Nortel ≫ Communications Server Version2100
   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Ip Phone 2007
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Nortel ≫ Meridian Option 81c

   Nortel ≫ Multimedia Communication Server 5100
   Nortel ≫ Multimedia Communication Server 5200
   Nortel ≫ Communications Server Version1000e
   Nortel ≫ Communications Server Version1000m
   Nortel ≫ Communications Server Version1000s
   Nortel ≫ Communications Server Version2100
   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Ip Phone 2007
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Nortel ≫ Meridian Sl100 Versioncs2100

   Nortel ≫ Multimedia Communication Server 5100
   Nortel ≫ Multimedia Communication Server 5200
   Nortel ≫ Communications Server Version1000e
   Nortel ≫ Communications Server Version1000m
   Nortel ≫ Communications Server Version1000s
   Nortel ≫ Communications Server Version2100
   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Ip Phone 2007
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Nortel ≫ Mobile Voice Client 2050

   Nortel ≫ Multimedia Communication Server 5100
   Nortel ≫ Multimedia Communication Server 5200
   Nortel ≫ Communications Server Version1000e
   Nortel ≫ Communications Server Version1000m
   Nortel ≫ Communications Server Version1000s
   Nortel ≫ Communications Server Version2100
   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Ip Phone 2007
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.59%	0.666

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:P/I:N/A:N

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://secunia.com/advisories/27234

Patch

Vendor Advisory

http://securityreason.com/securityalert/3272

http://www.csnc.ch/static/advisory/csnc/nortel_IP_phone_surveillance_mode_v1.0.txt

Exploit

http://www.securityfocus.com/archive/1/482478/100/0/threaded

http://www.securityfocus.com/bid/26120

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/37255

http://osvdb.org/41770

https://exchange.xforce.ibmcloud.com/vulnerabilities/42881

https://nvd.nist.gov/vuln/detail/CVE-2007-5638

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-5638

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-5638

EUVD