Vulnerabilities > CVE-2007-2332 - Remote Unauthorized Access vulnerability in Nortel VPN Routers
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 6_05.140 uses a fixed DES key to encrypt passwords, which allows remote authenticated users to obtain a password via a brute force attack on a hash from the LDAP store.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Hardware | 8 |