CVE-2008-5872

Name of the Vulnerable Software and Affected Versions Nortel Multimedia Communication Server (MSC) 5100 version 3.0.13

Description The issue allows remote attackers to cause a denial of service, resulting in a device outage. This can be achieved by sending a UFTP message with a negative block size or other crafted Connection Details values.

Recommendations For Nortel Multimedia Communication Server (MSC) 5100 version 3.0.13, consider restricting access to the UFTP protocol until a fix is available. As a temporary workaround, disabling the UFTP processing in IP Client Manager (IPCM) may help minimize the risk of exploitation.