Strix
26.1K

CVE-2007-5639

UnknownEPSS 1.79%

Last modified

CVE-2007-5639 is a vulnerability of currently unknown severity. The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and other Nortel IP Phone, Mobile Voice Client, and WLAN Handsets products allow remote attackers to cause a denial of service (device hang) via a flood of Mute and UnMute messages that have a spoofed source IP address for the Signaling Server.. EPSS estimates a 1.79% chance of exploitation in the next 30 days.

Description

The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and other Nortel IP Phone, Mobile Voice Client, and WLAN Handsets products allow remote attackers to cause a denial of service (device hang) via a flood of Mute and UnMute messages that have a spoofed source IP address for the Signaling Server.

Metrics

EPSS Probability
1.79%

75.6th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersions
NortelIp Softphone 2050All versions
NortelMobile Voice Client 2050All versions

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2007-5639?
The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and other Nortel IP Phone, Mobile Voice Client, and WLAN Handsets products allow remote attackers to cause a denial of service (device hang) via a flood of Mute and UnMute messages that have a spoofed source IP address for the Signaling Server.
How severe is CVE-2007-5639?
Severity scoring for CVE-2007-5639 is pending analysis. The EPSS model estimates a 1.79% probability of exploitation in the next 30 days.
How do I fix CVE-2007-5639?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2007-5639?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST