CVE-2008-5872

Nortel Multimedia Communication Server 5100 3.0.13 - Denial of Service via UFTP Message

Title source: llm
STIX 2.1

Description

Multiple unspecified vulnerabilities in the UNIStim File Transfer Protocol (UFTP) processing in IP Client Manager (IPCM) in Nortel Multimedia Communication Server (MSC) 5100 3.0.13 allow remote attackers to cause a denial of service (device outage) via a UFTP message that has a negative block size or other crafted Connection Details values.

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/45751
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32203
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/2779
Various Sources x_refsource_misc
http://voipshield.com/research-details.php?id=120
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/31633

Scores

EPSS 0.0192
EPSS Percentile 77.5%

Details

CWE
CWE-20
Status published
Products (1)
nortel/multimedia_communication_server_5100 3.0.13
Published Jan 08, 2009
Tracked Since Feb 18, 2026