Vulnerability Description
Multiple vulnerabilities in the H.323 protocol implementation for Nortel Networks Business Communications Manager (BCM), Succession 1000 IP Trunk and IP Peer Networking, and 802.11 Wireless IP Gateway allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nortel | Business Communications Manager | All versions |
| Nortel | 802.11 Wireless Ip Gateway | All versions |
| Nortel | Succession Communication Server 1000 | All versions |
References
- http://www.cert.org/advisories/CA-2004-01.htmlPatchThird Party AdvisoryUS Government Resource
- http://www.kb.cert.org/vuls/id/749342PatchThird Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/9406
- http://www.securitytracker.com/id?1008687
- http://www.uniras.gov.uk/vuls/2004/006489/h323.htm
- http://www.cert.org/advisories/CA-2004-01.htmlPatchThird Party AdvisoryUS Government Resource
- http://www.kb.cert.org/vuls/id/749342PatchThird Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/9406
- http://www.securitytracker.com/id?1008687
- http://www.uniras.gov.uk/vuls/2004/006489/h323.htm
FAQ
What is CVE-2004-0056?
CVE-2004-0056 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple vulnerabilities in the H.323 protocol implementation for Nortel Networks Business Communications Manager (BCM), Succession 1000 IP Trunk and IP Peer Networking, and 802.11 Wireless IP Gateway...
How severe is CVE-2004-0056?
CVE-2004-0056 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0056?
Check the references section above for vendor advisories and patch information. Affected products include: Nortel Business Communications Manager, Nortel 802.11 Wireless Ip Gateway, Nortel Succession Communication Server 1000.