First published: Fri Apr 27 2007(Updated: )
Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 6_05.140 uses a fixed DES key to encrypt passwords, which allows remote authenticated users to obtain a password via a brute force attack on a hash from the LDAP store.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Nortel Vpn Router 1700 | ||
Nortel Vpn Router 5000 | ||
Nortel Vpn Router 1100 | ||
Nortel Vpn Router 1010 | ||
Nortel Vpn Router 1050 | ||
Nortel Vpn Router 1750 | ||
Nortel Vpn Router 2700 | ||
Nortel Vpn Router 1740 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.