CERTA-2007-AVI-243
Vulnerability from certfr_avis
Une vulnérabilité dans les produits Communication Server 1000x de Nortel permet à un utilisateur distant de provoquer un déni de service du matériel vulnérable.
Description
Il existe une vulnérabilité de nature non-précisée par l'éditeur mais exploitable à distance dans les produits Communication Server 1000x de Nortel. Celle-ci permet à un utilisateur distant de provoquer un arrêt du fonctionnement de l'appareil vulnérable nécessitant son redémarrage.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Nortel Communication Server 1000M Cabinet/Chassis ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Nortel Communication Server 1000S.",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Nortel Communication Server 1000M Half Group/Single Group/Multi-Group ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Nortel Communication Server 1000E ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nIl existe une vuln\u00e9rabilit\u00e9 de nature non-pr\u00e9cis\u00e9e par l\u0027\u00e9diteur mais\nexploitable \u00e0 distance dans les produits Communication Server 1000x de\nNortel. Celle-ci permet \u00e0 un utilisateur distant de provoquer un arr\u00eat\ndu fonctionnement de l\u0027appareil vuln\u00e9rable n\u00e9cessitant son red\u00e9marrage.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [],
"initial_release_date": "2007-06-01T00:00:00",
"last_revision_date": "2007-06-01T00:00:00",
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Nortel NTD 584936 du 23 mai 2007 :",
"url": "http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=584936"
}
],
"reference": "CERTA-2007-AVI-243",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2007-06-01T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 dans les produits Communication Server 1000x de Nortel\npermet \u00e0 un utilisateur distant de provoquer un d\u00e9ni de service du\nmat\u00e9riel vuln\u00e9rable.\n",
"title": "Vuln\u00e9rabilit\u00e9 des produits Nortel",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Nortel du 23 mai 2007",
"url": null
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…