ID CVE-2004-0056
Summary Multiple vulnerabilities in the H.323 protocol implementation for Nortel Networks Business Communications Manager (BCM), Succession 1000 IP Trunk and IP Peer Networking, and 802.11 Wireless IP Gateway allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.
References
Vulnerable Configurations
  • cpe:2.3:a:nortel:business_communications_manager:*:*:*:*:*:*:*:*
    cpe:2.3:a:nortel:business_communications_manager:*:*:*:*:*:*:*:*
  • cpe:2.3:h:nortel:802.11_wireless_ip_gateway:*:*:*:*:*:*:*:*
    cpe:2.3:h:nortel:802.11_wireless_ip_gateway:*:*:*:*:*:*:*:*
  • cpe:2.3:h:nortel:succession_communication_server_1000:*:*:*:*:*:*:*:*
    cpe:2.3:h:nortel:succession_communication_server_1000:*:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 05-09-2008 - 20:37)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 9406
cert CA-2004-01
cert-vn VU#749342
misc http://www.uniras.gov.uk/vuls/2004/006489/h323.htm
sectrack 1008687
Last major update 05-09-2008 - 20:37
Published 17-02-2004 - 05:00
Last modified 05-09-2008 - 20:37
Back to Top