Vulnerabilities > CVE-2008-6564 - Multiple Security vulnerability in Nortel Networks Communication Server 1000
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Nortel UNIStim protocol, as used in Communication Server 1000 and other products, uses predictable sequence numbers, which allows remote attackers to hijack sessions via sniffing or brute force attacks.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 | |
Hardware | 1 |
References
- http://osvdb.org/44379
- http://secunia.com/advisories/29747
- http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=713455
- http://www.securityfocus.com/bid/28691
- http://www.securitytracker.com/id?1019847
- http://www.voipshield.com/research-details.php?id=27&s=4&threats_details=&threats_category=0&threats_vendor=0&limit=20&sort=discovered&sortby=DESC
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41801