7.6
CVE-2008-6564
- EPSS 2.24%
- Veröffentlicht 31.03.2009 17:30:00
- Zuletzt bearbeitet 16.06.2026 23:02:27
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Nortel UNIStim protocol, as used in Communication Server 1000 and other products, uses predictable sequence numbers, which allows remote attackers to hijack sessions via sniffing or brute force attacks.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.24% | 0.806 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.6 | 4.9 | 10 |
AV:N/AC:H/Au:N/C:C/I:C/A:C
|
http://osvdb.org/44379
http://secunia.com/advisories/29747
http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=713455
http://www.securityfocus.com/bid/28691
http://www.securitytracker.com/id?1019847
http://www.voipshield.com/research-details.php?id=27&s=4&threats_details=&threats_category=0&threats_vendor=0&limit=20&sort=discovered&sortby=DESC
https://exchange.xforce.ibmcloud.com/vulnerabilities/41801