Strix
26.1K

CVE-2007-5638

UnknownEPSS 1.47%

Last modified

CVE-2007-5638 is a vulnerability of currently unknown severity. The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP Phone, Business Communications Manager (BCM), and other product lines, use only 65536 different values in the 32-bit ID number field of an RUDP datagram, which makes it easier for remote attackers to guess the RUDP ID and spoof messages. NOTE: this can be leveraged for an eavesdropping attack by sending many Open Audio Stream messages.. EPSS estimates a 1.47% chance of exploitation in the next 30 days.

Description

The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP Phone, Business Communications Manager (BCM), and other product lines, use only 65536 different values in the 32-bit ID number field of an RUDP datagram, which makes it easier for remote attackers to guess the RUDP ID and spoof messages. NOTE: this can be leveraged for an eavesdropping attack by sending many Open Audio Stream messages.

Metrics

EPSS Probability
1.47%

70.5th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
NortelBusiness Communications Manager50
NortelBusiness Communications Manager50a
NortelBusiness Communications Manager50e
NortelBusiness Communications Manager200
NortelBusiness Communications Manager400
NortelBusiness Communications Manager1000
NortelBusiness Communications Managersrg50
NortelBusiness Communications Managersrg200
NortelCentrex Ip Client ManagerAll versions
NortelCentrex Ip Element ManagerAll versions
NortelMeridian Option 11cAll versions
NortelMeridian Option 51cAll versions
NortelMeridian Option 61cAll versions
NortelMeridian Option 81cAll versions
NortelMeridian Sl100cs2100
NortelMobile Voice Client 2050All versions

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2007-5638?
The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP Phone, Business Communications Manager (BCM), and other product lines, use only 65536 different values in the 32-bit ID number field of an RUDP datagram, which makes it easier for remote attackers to guess the RUDP ID and spoof messages. NOTE: this can be leveraged for an eavesdropping attack by sending many Open Audio Stream messages.
How severe is CVE-2007-5638?
Severity scoring for CVE-2007-5638 is pending analysis. The EPSS model estimates a 1.47% probability of exploitation in the next 30 days.
How do I fix CVE-2007-5638?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2007-5638?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST