CVE Vulnerability

CVE-2008-6564

Nortel UNIStim protocol, as used in Communication Server 1000 and other products, uses predictable sequence numbers, which allows remote attackers to hijack sessions via sniffing or brute force attacks.

7.6 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 4.9 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

References
Link Resource
http://www.voipshield.com/research-details.php?id=27&s=4&threats_details=&threats_category=0&threats_vendor=0&limit=20&sort=discovered&sortby=DESC
http://www.securitytracker.com/id?1019847
http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=713455 Vendor Advisory
http://osvdb.org/44379
http://secunia.com/advisories/29747
http://www.securityfocus.com/bid/28691
https://exchange.xforce.ibmcloud.com/vulnerabilities/41801
Configurations

Configuration 1
Information

Published : 2009-03-31 05:30

Updated : 2017-08-17 01:29

NVD link : CVE-2008-6564

Mitre link : CVE-2008-6564

Products Affected
No products.
CWE
NVD-CWE-Other