Vulnerability Description
The web management interface for Mitel 3300 Integrated Communications Platform (ICP) before 4.2.2.11 allows remote authenticated users to cause a denial of service (resource exhaustion) via a large number of active sessions, which exceeds ICP's maximum.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mitel | Mitel 3300 Integrated Communication Platform | All versions |
References
- http://www.corsaire.com/advisories/c040817-003.txtVendor Advisory
- http://www.mitel.com/DocController?documentId=14223Vendor Advisory
- http://www.niscc.gov.uk/niscc/docs/re-20050228-00178.pdf?lang=enVendor Advisory
- http://www.corsaire.com/advisories/c040817-003.txtVendor Advisory
- http://www.mitel.com/DocController?documentId=14223Vendor Advisory
- http://www.niscc.gov.uk/niscc/docs/re-20050228-00178.pdf?lang=enVendor Advisory
FAQ
What is CVE-2004-0945?
CVE-2004-0945 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The web management interface for Mitel 3300 Integrated Communications Platform (ICP) before 4.2.2.11 allows remote authenticated users to cause a denial of service (resource exhaustion) via a large nu...
How severe is CVE-2004-0945?
CVE-2004-0945 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0945?
Check the references section above for vendor advisories and patch information. Affected products include: Mitel Mitel 3300 Integrated Communication Platform.