CVE-2008-4999
Nortel UNIStim IP Phone 0604DAS - Denial of Service via Long Ping Packet
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2008-4999. PoCs published by sipherr.
AI-analyzed exploit summary This exploit demonstrates a remote denial-of-service vulnerability in Nortel UNIStim IP Phone products by sending an oversized ICMP packet (ping -s 65500) to crash the target device. The vulnerability stems from improper handling of unexpected network datagrams.
Description
Nortel Networks UNIStim IP Phone 0604DAS allows remote attackers to cause a denial of service (crash) via a long ping packet ("ping of death"). NOTE: this issue could not be reproduced by a third party, who tested it on 0604DAD. In addition, the original researcher was not able to reliably reproduce the issue.
Exploits (1)
This exploit demonstrates a remote denial-of-service vulnerability in Nortel UNIStim IP Phone products by sending an oversized ICMP packet (ping -s 65500) to crash the target device. The vulnerability stems from improper handling of unexpected network datagrams.