Strix
26.1K

CVE-2007-5640

UnknownEPSS 1.82%

Last modified

CVE-2007-5640 is a vulnerability of currently unknown severity. The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP Phone, Business Communications Manager (BCM), Mobile Voice Client, and other product lines, allow remote attackers to block calls and force re-registration via a resume message to the Signaling Server that has a spoofed source IP address for the phone. NOTE: the attack is more disruptive if a new spoofed resume message is sent after each re-registration.. EPSS estimates a 1.82% chance of exploitation in the next 30 days.

Description

The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP Phone, Business Communications Manager (BCM), Mobile Voice Client, and other product lines, allow remote attackers to block calls and force re-registration via a resume message to the Signaling Server that has a spoofed source IP address for the phone. NOTE: the attack is more disruptive if a new spoofed resume message is sent after each re-registration.

Metrics

EPSS Probability
1.82%

76.0th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersions
NortelBusiness Communications Manager50
NortelBusiness Communications Manager50a
NortelBusiness Communications Manager50e
NortelBusiness Communications Manager200
NortelBusiness Communications Manager400
NortelBusiness Communications Manager1000
NortelBusiness Communications Managersrg50
NortelBusiness Communications Managersrg200
NortelCentrex Ip Client ManagerAll versions
NortelCentrex Ip Element ManagerAll versions
NortelMeridian Option 11cAll versions
NortelMeridian Option 51cAll versions
NortelMeridian Option 61cAll versions
NortelMeridian Option 81cAll versions
NortelMeridian Sl100cs2100
NortelMobile Voice Client 2050All versions

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2007-5640?
The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP Phone, Business Communications Manager (BCM), Mobile Voice Client, and other product lines, allow remote attackers to block calls and force re-registration via a resume message to the Signaling Server that has a spoofed source IP address for the phone. NOTE: the attack is more disruptive if a new spoofed resume message is sent after each re-registration.
How severe is CVE-2007-5640?
Severity scoring for CVE-2007-5640 is pending analysis. The EPSS model estimates a 1.82% probability of exploitation in the next 30 days.
How do I fix CVE-2007-5640?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2007-5640?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST