7.1

CVE-2007-5639

Exploit

EPSS 1.27%
Veröffentlicht 23.10.2007 17:46:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and other Nortel IP Phone, Mobile Voice Client, and WLAN Handsets products allow remote attackers to cause a denial of service (device hang) via a flood of Mute and UnMute messages that have a spoofed source IP address for the Signaling Server.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Nortel ≫ Ip Softphone 2050

   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Nortel ≫ Mobile Voice Client 2050

   Nortel ≫ Ip Audio Conference Phone 2033
   Nortel ≫ Ip Phone 1110
   Nortel ≫ Ip Phone 1120e
   Nortel ≫ Ip Phone 1140e
   Nortel ≫ Ip Phone 1150e
   Nortel ≫ Ip Phone 2001
   Nortel ≫ Ip Phone 2002
   Nortel ≫ Ip Phone 2004
   Nortel ≫ Wlan Handset 2210
   Nortel ≫ Wlan Handset 2211
   Nortel ≫ Wlan Handset 2212
   Nortel ≫ Wlan Handset 6120
   Nortel ≫ Wlan Handset 6140

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.27%	0.786

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.1	8.6	6.9	AV:N/AC:M/Au:N/C:N/I:N/A:C

http://securityreason.com/securityalert/3273

http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=654715

Patch

http://www.csnc.ch/static/advisory/csnc/nortel_IP_phone_flooding_denial_of_service_v1.0.txt

Exploit

http://www.securityfocus.com/archive/1/482480/100/0/threaded

http://www.securityfocus.com/bid/26122

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/37253

https://nvd.nist.gov/vuln/detail/CVE-2007-5639

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-5639

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-5639

EUVD