nortel software vulnerabilities

Searching nortel software vulnerabilities

Nortel CVX 1800 is installed with a default "pu

Nortel CVX 1800 is installed with a default "public" community string, which allows remote attackers to read usernames and passwords and modify the CVX configuration.

The Session Initiation Protocol (SIP) implement

Initiation | Protocol | Session |

The Session Initiation Protocol (SIP) implementation in Nortel Networks Succession Communication Server 2000, when using SIP-T, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite.

Multiple vulnerabilities in the H.323 protocol

Multiple vulnerabilities in the H.323 protocol implementation for Nortel Networks Business Communications Manager (BCM), Succession 1000 IP Trunk and IP Peer Networking, and 802.11 Wireless IP Gateway allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.

Nortel Networks Contivity VPN Client displays a

Nortel Networks Contivity VPN Client displays a different error message depending on whether the username is valid or invalid, which could allow remote attackers to gain sensitive information.

Nortel Wireless LAN (WLAN) Access Point (AP) 22

Wireless | Nortel | LAN |

Nortel Wireless LAN (WLAN) Access Point (AP) 2220, 2221, and 2225 allow remote attackers to cause a denial of service (service crash) via a TCP request with a large string, followed by 8 newline characters, to (1) the Telnet service on TCP port 23 and (2) the HTTP service on TCP port 80, possibly due to a buffer overflow.

Nortel Contivity VPN Client 2.1.7, 3.00, 3.01,

Contivity | Client | Nortel | VPN |

Nortel Contivity VPN Client 2.1.7, 3.00, 3.01, 4.91, and 5.01, when opening a VPN tunnel, does not check the gateway certificate until after a dialog box has been displayed to the user, which creates a race condition that allows remote attackers to perform a man-in-the-middle (MITM) attack.

Nortel VPN client 5.01 stores the cleartext pas

client | Nortel | VPN |

Nortel VPN client 5.01 stores the cleartext password in the memory or the Extranet.exe process, which could allow local users to obtain sensitive information.

Nortel VPN Router (aka Contivity) allows remote

Router | Nortel | VPN |

Nortel VPN Router (aka Contivity) allows remote attackers to cause a denial of service (crash) via an IPsec IKE packet with a malformed ISAKMP header.

Nortel Contivity VPN Client V05_01.030, when co

Nortel Contivity VPN Client V05_01.030, when configuring a certificate to be used as authentication, does not properly drop system privileges, which allows local users to gain privileges by opening a program with the File Open dialog box.

tunnelform.yaws in Nortel SSL VPN 4.2.1.6 allow

tunnelformyaws | Nortel | VPN | SSL |

tunnelform.yaws in Nortel SSL VPN 4.2.1.6 allows remote attackers to execute arbitrary commands via a link in the a parameter, which is executed with extra privileges in a cryptographically signed Java Applet.

The Net Direct client for Linux before 6.0.5 in

The Net Direct client for Linux before 6.0.5 in Nortel Application Switch 2424, VPN 3050 and 3070, and SSL VPN Module 1000 extracts and executes files with insecure permissions, which allows local users to exploit a race condition to replace a world-writable file in /tmp/NetClient and cause another user to execute arbitrary code when attempting to execute this client, as demonstrated by replacing /tmp/NetClient/client.

Nortel Networks CallPilot and Meridian Mail voi

Nortel Networks CallPilot and Meridian Mail voicemail systems, when a mailbox has auto logon enabled, allow remote attackers to retrieve or remove messages, or reconfigure the mailbox, by spoofing Calling Number Identification (CNID, aka Caller ID).

Nortel VPN Router (aka Contivity) 1000, 2000, 4

Router | Nortel | VPN |

Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 6_05.140 uses a fixed DES key to encrypt passwords, which allows remote authenticated users to obtain a password via a brute force attack on a hash from the LDAP store.

Nortel VPN Router (aka Contivity) 1000, 2000, 4

Router | Nortel | VPN |

Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 5_05.149, 5_05.3xx before 5_05.304, and 6.x before 6_05.140 includes the FIPSecryptedtest1219 and FIPSunecryptedtest1219 default accounts in the LDAP template, which might allow remote attackers to access the private network.

Nortel VPN Router (aka Contivity) 1000, 2000, 4

Router | Nortel | VPN |

Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 5_05.149, 5_05.3xx before 5_05.304, and 6.x before 6_05.140 has two template HTML files lacking certain verification tags, which allows remote attackers to access the administration interface and change the device configuration via certain requests.

Unspecified vulnerability in the Nortel CS 1000

vulnerability | Unspecified | Nortel |

Unspecified vulnerability in the Nortel CS 1000 M media card in Enterprise VoIP-Core-CS 1000E, 1000M, and 1000S 04.50W before Wednesday, May 23, 2007 in Meridian/CS 1000 allows remote attackers to cause a denial of service (card hang) via unspecified vectors.

The Nortel PC Client SIP Soft Phone 4.1 3.5.208

The Nortel PC Client SIP Soft Phone 4.1 3.5.208[Saturday, October 15, 2005] allows remote attackers to cause a denial of service (device crash) via a SIP message with a malformed header.

Buffer overflow in the SIP header parsing modul

Buffer overflow in the SIP header parsing module in the Nortel PC Client SIP Soft Phone 4.1 3.5.208[Saturday, October 15, 2005] allows remote attackers to execute arbitrary code via a malformed message, a different vulnerability than CVE-2007-3361.

Software vulnerabilities results 1 to 19 of 19

Page: 1

nortel software vulnerabilities

vulnerabilities.aspcode.net

Searching nortel software vulnerabilities