Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5871

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2008-5871
Last Modified 07 Mar 2011 10:15:21
Published 08 Jan 2009 01:30:04
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5871

Summary

Nortel Multimedia Communication Server (MSC) 5100 3.0.13 does not verify credentials during call placement, which allows remote attackers to spoof and redirect VoIP calls, possibly related to the snoop command.

Vulnerable Systems

Application

  • Nortel Multimedia Communication Server 5100 3.0.13


References

XF - nortel-mcs-snoop-weak-security(45752)

VUPEN - ADV-2008-2779

BID - 31640

MISC - http://voipshield.com/research-details.php?id=119

CONFIRM - http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=775223

SECUNIA - 32203


Last Updated: 27 May 2016 10:48:58