CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-2334

Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 5_05.149, 5_05.3xx before 5_05.304, and 6.x before 6_05.140 has two template HTML files lacking certain verification tags, which allows remote attackers to access the administration interface and change the device configuration via certain requests.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 76.3%

CVSS Severity

CVSS v2 Score 7.5

References

http://osvdb.org/35056
http://secunia.com/advisories/24962
http://www.securityfocus.com/bid/23562
http://www.securitytracker.com/id?1017943
http://www.vupen.com/english/advisories/2007/1464
http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=567877&RenditionID=&poid=null
http://osvdb.org/35056
http://secunia.com/advisories/24962
http://www.securityfocus.com/bid/23562
http://www.securitytracker.com/id?1017943
http://www.vupen.com/english/advisories/2007/1464
http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=567877&RenditionID=&poid=null

Products affected by CVE-2007-2334

Nortel » Contivity » Version: 1000_vpn_switch

cpe:2.3:h:nortel:contivity:1000_vpn_switch
Nortel » Contivity » Version: 2000_vpn_switch

cpe:2.3:h:nortel:contivity:2000_vpn_switch
Nortel » Contivity » Version: 4000_vpn_switch

cpe:2.3:h:nortel:contivity:4000_vpn_switch
Nortel » Vpn Router 5000 » Version: N/A

cpe:2.3:h:nortel:vpn_router_5000:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-2334

Products

Pricing

Contact Us