Vulnerability Details : CVE-2004-0056
Multiple vulnerabilities in the H.323 protocol implementation for Nortel Networks Business Communications Manager (BCM), Succession 1000 IP Trunk and IP Peer Networking, and 802.11 Wireless IP Gateway allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.
Vulnerability category: Execute codeDenial of service
Exploit prediction scoring system (EPSS) score for CVE-2004-0056
Probability of exploitation activity in the next 30 days: 4.01%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 91 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2004-0056
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2004-0056
- http://www.uniras.gov.uk/vuls/2004/006489/h323.htm
- http://www.securityfocus.com/bid/9406
-
http://www.cert.org/advisories/CA-2004-01.html
Patch;Third Party Advisory;US Government Resource
-
http://www.securitytracker.com/id?1008687
-
http://www.kb.cert.org/vuls/id/749342
Patch;Third Party Advisory;US Government Resource
Products affected by CVE-2004-0056
- cpe:2.3:a:nortel:business_communications_manager:*:*:*:*:*:*:*:*
- cpe:2.3:h:nortel:802.11_wireless_ip_gateway:*:*:*:*:*:*:*:*
- cpe:2.3:h:nortel:succession_communication_server_1000:*:*:*:*:*:*:*:*