Vulnerabilities > CVE-2008-6576 - Multiple Security vulnerability in Nortel Cs1000 4.50

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

nortel

NVD

Published: 2009-04-01

Updated: 2017-08-17

Summary

Unspecified vulnerability in the "session limitation technique" in the FTP service on Nortel Communications Server 1000 (CS1K) 4.50.x, when running on VGMC or signaling nodes, allows remote attackers to cause a denial of service (resource exhaustion and failed updates) via unknown vectors that causes consumption of all available sessions.

Vulnerable Configurations

Part	Description	Count
Hardware	Nortel Nortel Cs1000 4.50	1

References

http://osvdb.org/44380
http://secunia.com/advisories/29747
http://securitytracker.com/id?1019845
http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=713455
http://www.securityfocus.com/bid/28691
http://www.voipshield.com/research-details.php?id=11
https://exchange.xforce.ibmcloud.com/vulnerabilities/41804