CVE-2008-5871

EUVD-2008-5841
Nortel Multimedia Communication Server (MSC) 5100 3.0.13 does not verify credentials during call placement, which allows remote attackers to spoof and redirect VoIP calls, possibly related to the snoop command.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.4 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 77%
Affected Products (NVD)
VendorProductVersion
nortelmultimedia_communication_server_5100
3.0.13
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/32203
http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=775223
http://voipshield.com/research-details.php?id=119
http://www.securityfocus.com/bid/31640
http://www.vupen.com/english/advisories/2008/2779
https://exchange.xforce.ibmcloud.com/vulnerabilities/45752
http://secunia.com/advisories/32203
http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=775223
http://voipshield.com/research-details.php?id=119
http://www.securityfocus.com/bid/31640
http://www.vupen.com/english/advisories/2008/2779
https://exchange.xforce.ibmcloud.com/vulnerabilities/45752