Nortel Unistream IP Phone / Softphone / Communication Server multiple security vulnerabilities
Published:		20.10.2007
Source:		BUGTRAQ
SecurityVulns ID:		8275
Type:		remote
Level:		7/10
Description:		Buffer overflow, eavesdroping. multiple DoS conditions.

Affected:		NORTEL : IP Softphone 2050
		NORTEL : Application Server 5200
		NORTEL : Communication Server 1000E
		NORTEL : Communication Server 1000M
		NORTEL : Communication Server 1000S
		NORTEL : Communication Server 2100
		NORTEL : IP Audio Conference Phone 2033
		NORTEL : IP Phone 1110
		NORTEL : IP Phone 1120E
		NORTEL : IP Phone 1140E
		NORTEL : IP Phone 1150E
		NORTEL : IP Phone 2001
		NORTEL : IP Phone 2002
		NORTEL : IP Phone 2004
		NORTEL : IP Phone 2007
		NORTEL : Meridian 1
		NORTEL : Mobile Voice Client 2050
		NORTEL : Multimedia Communication Server 5100
		NORTEL : Survivable Remote Gateway 50
		NORTEL : Survivable Remote Gateway 200
		NORTEL : Survivable Remote Gateway 400
		NORTEL : WLAN Handset 2210
		NORTEL : WLAN Handset 2211
		NORTEL : WLAN Handset 2212
		NORTEL : WLAN Handset 6120
		NORTEL : WLAN Handset 6140
		NORTEL : Business Communications Manager 50
		NORTEL : Business Communications Manager 400
		NORTEL : Business Communications Manager 1000
		NORTEL : Centrex IP Client Manager
		NORTEL : Centrex IP Element Manager
		NORTEL : Circuit Switching

Original document		daniel.stirnimann_(at)_csnc.ch, Nortel Telephony Server Denial of Service (20.10.2007)
		daniel.stirnimann_(at)_csnc.ch, Nortel IP Phone forced re-authentication (20.10.2007)
		daniel.stirnimann_(at)_csnc.ch, Nortel IP Phone Flooding Denial of Service (20.10.2007)
		daniel.stirnimann_(at)_csnc.ch, Nortel IP Phone Surveillance Mode (20.10.2007)
		daniel.stirnimann_(at)_csnc.ch, Nortel UNIStim IP Softphone Buffer-Overflow (20.10.2007)

Discuss:

Read or add your comments to this news (0 comments)