Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Nortel UNIStim protocol, as used in Communication Server 1000 and other products, uses predictable sequence numbers, which allows remote attackers to hijack sessions via sniffing or brute force attacks.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Nortel Networks Communication Server多个安全漏洞
Vulnerability Description
Nortel Networks的Communication Server是基于服务器的IP PBX设备,可提供成熟的网络电话服务。 Nortel Communication Server中存在多个安全漏洞,允许恶意用户绕过某些安全限制、泄露敏感信息、导致拒绝服务或入侵有漏洞的系统。 1) 处理UNIStim IT序列号中的错误可能导致伪造UNIStim客户端命令,成功攻击要求能够猜测到正确的序列号。 2) 16个硬编码的帐号和口令允许写访问受影响的系统。 3) 命令交换机制中的错误可能导致注入任意命令。
CVSS Information
N/A
Vulnerability Type
N/A