Vulnerabilities > Nortel > Contivity > High

DATE CVE VULNERABILITY TITLE RISK
2007-04-27 CVE-2007-2334 Remote Unauthorized Access vulnerability in Nortel Contivity and VPN Router 5000
Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 5_05.149, 5_05.3xx before 5_05.304, and 6.x before 6_05.140 has two template HTML files lacking certain verification tags, which allows remote attackers to access the administration interface and change the device configuration via certain requests.
network
low complexity
nortel
7.5
2005-08-16 CVE-2005-2579 Local Security vulnerability in Nortel Contivity V0501.030
Nortel Contivity VPN Client V05_01.030, when configuring a certificate to be used as authentication, does not properly drop system privileges, which allows local users to gain privileges by opening a program with the File Open dialog box.
local
low complexity
nortel
7.2