CVE - CVE-2007-5639

CVE-ID
CVE-2007-5639	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and other Nortel IP Phone, Mobile Voice Client, and WLAN Handsets products allow remote attackers to cause a denial of service (device hang) via a flood of Mute and UnMute messages that have a spoofed source IP address for the Signaling Server.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:26122 URL:http://www.securityfocus.com/bid/26122 BUGTRAQ:20071018 Nortel IP Phone Flooding Denial of Service URL:http://www.securityfocus.com/archive/1/482480/100/0/threaded CONFIRM:http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=654715 MISC:http://www.csnc.ch/static/advisory/csnc/nortel_IP_phone_flooding_denial_of_service_v1.0.txt SREASON:3273 URL:http://securityreason.com/securityalert/3273 XF:nortel-ipphone-spoof-dos(37253) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/37253
Assigning CNA
MITRE Corporation
Date Record Created
20071023	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20071023)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)