CERTA-2007-AVI-243
Vulnerability from certfr_avis - Published: 2007-06-01 - Updated: 2007-06-01
Une vulnérabilité dans les produits Communication Server 1000x de Nortel permet à un utilisateur distant de provoquer un déni de service du matériel vulnérable.
Description
Il existe une vulnérabilité de nature non-précisée par l'éditeur mais exploitable à distance dans les produits Communication Server 1000x de Nortel. Celle-ci permet à un utilisateur distant de provoquer un arrêt du fonctionnement de l'appareil vulnérable nécessitant son redémarrage.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Nortel Communication Server 1000M Cabinet/Chassis ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Nortel Communication Server 1000S.",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Nortel Communication Server 1000M Half Group/Single Group/Multi-Group ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Nortel Communication Server 1000E ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nIl existe une vuln\u00e9rabilit\u00e9 de nature non-pr\u00e9cis\u00e9e par l\u0027\u00e9diteur mais\nexploitable \u00e0 distance dans les produits Communication Server 1000x de\nNortel. Celle-ci permet \u00e0 un utilisateur distant de provoquer un arr\u00eat\ndu fonctionnement de l\u0027appareil vuln\u00e9rable n\u00e9cessitant son red\u00e9marrage.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [],
"initial_release_date": "2007-06-01T00:00:00",
"last_revision_date": "2007-06-01T00:00:00",
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Nortel NTD 584936 du 23 mai 2007 :",
"url": "http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=584936"
}
],
"reference": "CERTA-2007-AVI-243",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2007-06-01T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 dans les produits Communication Server 1000x de Nortel\npermet \u00e0 un utilisateur distant de provoquer un d\u00e9ni de service du\nmat\u00e9riel vuln\u00e9rable.\n",
"title": "Vuln\u00e9rabilit\u00e9 des produits Nortel",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Nortel du 23 mai 2007",
"url": null
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…