Vulnerabilities > CVE-2004-2549 - Denial Of Service vulnerability in Nortel products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Nortel Wireless LAN (WLAN) Access Point (AP) 2220, 2221, and 2225 allow remote attackers to cause a denial of service (service crash) via a TCP request with a large string, followed by 8 newline characters, to (1) the Telnet service on TCP port 23 and (2) the HTTP service on TCP port 80, possibly due to a buffer overflow.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Hardware | 3 |
Exploit-Db
| description | Nortel Wireless LAN Access Point 2200 Series Denial Of Service Vulnerability. CVE-2004-2549. Dos exploit for hardware platform |
| id | EDB-ID:23786 |
| last seen | 2016-02-02 |
| modified | 2004-03-02 |
| published | 2004-03-02 |
| reporter | Alex Hernandez |
| source | https://www.exploit-db.com/download/23786/ |
| title | Nortel Wireless LAN Access Point 2200 Series Denial of Service Vulnerability |
References
- http://archives.neohapsis.com/archives/fulldisclosure/2004-03/0055.html
- http://secunia.com/advisories/11034
- http://securitytracker.com/id?1009294
- http://www.osvdb.org/4128
- http://www.securityfocus.com/bid/9787
- http://www116.nortelnetworks.com/docs/bvdoc/wlan/216109a.pdf
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15373