Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2549

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-2549
Last Modified 05 Sep 2008 04:44:27
Published 31 Dec 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-2549

Summary

Nortel Wireless LAN (WLAN) Access Point (AP) 2220, 2221, and 2225 allow remote attackers to cause a denial of service (service crash) via a TCP request with a large string, followed by 8 newline characters, to (1) the Telnet service on TCP port 23 and (2) the HTTP service on TCP port 80, possibly due to a buffer overflow.

Vulnerable Systems


References

XF - nortel-accesspoint-telnet-dos(15373)

MISC - http://www116.nortelnetworks.com/docs/bvdoc/wlan/216109a.pdf

BID - 9787

OSVDB - 4128

SECTRACK - 1009294

SECUNIA - 11034

FULLDISC - 20040301 Nortel Networks Wireless LAN Access Point 2200 DoS + PoC


Last Updated: 27 May 2016 10:39:32