Vulnerability Description
Nortel Networks UNIStim IP Phone 0604DAS allows remote attackers to cause a denial of service (crash) via a long ping packet ("ping of death"). NOTE: this issue could not be reproduced by a third party, who tested it on 0604DAD. In addition, the original researcher was not able to reliably reproduce the issue.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nortel | Unistim Ip Phone | 0604das |
Related Weaknesses (CWE)
References
- http://securityreason.com/securityalert/4568
- http://www.securityfocus.com/archive/1/488782/100/100/threaded
- http://www.securityfocus.com/archive/1/488801/100/100/threaded
- http://www.securityfocus.com/archive/1/488803/100/100/threaded
- http://www.securityfocus.com/bid/28004
- https://exchange.xforce.ibmcloud.com/vulnerabilities/40993
- http://securityreason.com/securityalert/4568
- http://www.securityfocus.com/archive/1/488782/100/100/threaded
- http://www.securityfocus.com/archive/1/488801/100/100/threaded
- http://www.securityfocus.com/archive/1/488803/100/100/threaded
- http://www.securityfocus.com/bid/28004
- https://exchange.xforce.ibmcloud.com/vulnerabilities/40993
FAQ
What is CVE-2008-4999?
CVE-2008-4999 is a vulnerability with a CVSS score of 7.8 (HIGH). Nortel Networks UNIStim IP Phone 0604DAS allows remote attackers to cause a denial of service (crash) via a long ping packet ("ping of death"). NOTE: this issue could not be reproduced by a third par...
How severe is CVE-2008-4999?
CVE-2008-4999 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-4999?
Check the references section above for vendor advisories and patch information. Affected products include: Nortel Unistim Ip Phone.