CVE-2008-5872

high

Description

Multiple unspecified vulnerabilities in the UNIStim File Transfer Protocol (UFTP) processing in IP Client Manager (IPCM) in Nortel Multimedia Communication Server (MSC) 5100 3.0.13 allow remote attackers to cause a denial of service (device outage) via a UFTP message that has a negative block size or other crafted Connection Details values.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/45751

http://www.vupen.com/english/advisories/2008/2779

http://www.securityfocus.com/bid/31633

http://voipshield.com/research-details.php?id=120

http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=774845

http://secunia.com/advisories/32203

Details

Source: Mitre, NVD

Published: 2009-01-08

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High

EPSS

EPSS: 0.0215