1. Home
  2. CVE Database
  3. CVE-2007-5639
HIGH · 7.1

CVE-2007-5639

The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and other Nortel IP Phone, Mobile Voice Client, and WLAN Handsets products allow remote attackers to cause a denial of service (device hang) via a...

Vulnerability Description

The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and other Nortel IP Phone, Mobile Voice Client, and WLAN Handsets products allow remote attackers to cause a denial of service (device hang) via a flood of Mute and UnMute messages that have a spoofed source IP address for the Signaling Server.

CVSS Score

7.1

HIGH

AV:N/AC:M/Au:N/C:N/I:N/A:C
Confidentiality
NONE
Integrity
NONE
Availability
COMPLETE

Affected Products

VendorProductVersions
NortelIp Audio Conference Phone 2033All versions
NortelIp Phone 1110All versions
NortelIp Phone 1120EAll versions
NortelIp Phone 1140EAll versions
NortelIp Phone 1150EAll versions
NortelIp Phone 2001All versions
NortelIp Phone 2002All versions
NortelIp Phone 2004All versions
NortelWlan Handset 2210All versions
NortelWlan Handset 2211All versions
NortelWlan Handset 2212All versions
NortelWlan Handset 6120All versions
NortelWlan Handset 6140All versions
NortelIp Softphone 2050All versions
NortelMobile Voice Client 2050All versions

References

FAQ

What is CVE-2007-5639?

CVE-2007-5639 is a vulnerability with a CVSS score of 7.1 (HIGH). The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and other Nortel IP Phone, Mobile Voice Client, and WLAN Handsets products allow remote attackers to cause a denial of service (device hang) via a...

How severe is CVE-2007-5639?

CVE-2007-5639 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2007-5639?

Check the references section above for vendor advisories and patch information. Affected products include: Nortel Ip Audio Conference Phone 2033, Nortel Ip Phone 1110, Nortel Ip Phone 1120E, Nortel Ip Phone 1140E, Nortel Ip Phone 1150E.