Lucene search

[email protected]CVE-2008-6576

HistoryApr 01, 2009 - 10:30 p.m.

CVE-2008-6576

2009-04-0122:30:01

[email protected]

web.nvd.nist.gov

nortel

cs1k

ftp service

vulnerability

denial of service

resource exhaustion

cve-2008-6576

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

Low

0.033 Low

EPSS

Percentile

91.3%

JSON

Unspecified vulnerability in the “session limitation technique” in the FTP service on Nortel Communications Server 1000 (CS1K) 4.50.x, when running on VGMC or signaling nodes, allows remote attackers to cause a denial of service (resource exhaustion and failed updates) via unknown vectors that causes consumption of all available sessions.

Affected configurations

NVD

Node

nortelcs1000Match4.50

CPENameOperatorVersion
nortel:cs1000nortel cs1000eq4.50

CPE	Name	Operator	Version
nortel:cs1000	nortel cs1000	eq	4.50

References

osvdb.org/44380

secunia.com/advisories/29747

securitytracker.com/id?1019845

support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=713455

www.securityfocus.com/bid/28691

www.voipshield.com/research-details.php?id=11

exchange.xforce.ibmcloud.com/vulnerabilities/41804

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

Low

0.033 Low

EPSS

Percentile

91.3%

JSON

Related for CVE-2008-6576

nvd1 cvelist1 prion1