topleft topright
« Back
Severity
High
Title
Nortel Multimedia Communications Server 5100 IP Client Manager UNIStim File Transfer Protocol - Connection Details
Description

Within some Nortel products, notable the MCS 5100, UNIStim File Transfer Protocol (UFTP) is used. UFTP is a proprietary file transfer protocol, which is transported over UNIStim control channel over Reliable UDP. Due to flaws within the handling of UFTP messages it is possible to cause a number of different Denial of Service (DoS) attacks against the affected equipment by manipulating values in Connection Details fields.

Details
Category
Denial of Service
Vendor
Nortel
Product
Multimedia Communications Server 5100 3.x
Released
2008-10-08
updated
2008-10-08
Response
Attempting to address the issue
Recommendations

Nortel has acknowledge the issue and is working on correcting it.  One of the variations of this vulnerability is already addressed in MCS version 3.5.9. More details can be found in Nortel SECURITY ADVISORY BULLETIN, 2008009103, Rev 1 at http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=774845.

 

Nortel customers with a valid support agreement may wish to speak with their support contact in order to obtain additional vendor details.

 

In the short term it is recommended that a VoIP aware IPS product, such as VoIPguard, with signatures to detect unatuthorized attempts to access system resources using the hardcoded accounts be implemented to prevent them from being exploited.  In addition, implementation of general best practice guidance such as controlling access to telephony networks via VLAN’s, access control lists, firewalls, network admission controls and/or other security devices will aid in limiting the exposure of this vulnerability.

Tracking Id
VSRNT-2008-011
 

Each line represents an individual vulnerability or group of vulnerabilities. For example, "UCM Multiple Hardcoded Passwords" is presented here in a single line but was reported to Nortel as sixteen (16) individual vulnerabilities.

Severity Legend

Click on a level for description
Low

A low severity issue falls into one of two categories.  Firstly, there are those that are not directly exploitable and affect a single IP client, a small subset of the deployment, or are quite innocuous taken by themselves. In other words, they provide information which either involves only a small number (or single) client and that information requires considerable other information or effort to be useful to an attacker.  The other category of low severity issues includes those that are best practices which are not intended to directly mitigate an exploitable risk but to increase overall security robustness and demonstrate due diligence.

Medium

A medium severity issue is typically an issue which can lead to further exploitation or provides short-lived effect on a minimal number of clients.  It may not be immediately exploitable but provides sufficient information or access to move an attack closer to fruition.  Alternately it may provide unauthorized access not directly related to the VoIP portion of the network.

High

A high severity issue can be exploited to compromise one or more nodes within the deployment but may require authentication, especially when exploiting multiple systems simultaneously. In addition, it may be possible to protect against untrusted exploitation of the issue by deploying traditional security tools.

Critical

A critical severity issue can be exploited by an untrusted individual to compromise the entire deployment under review.  There are no security or protective mechanisms in place that will mediate exploitation of this vulnerability by an untrusted individual.

Vendor Response Legend

Patch available
Workaround proposed
Attempting to address the issue
No vendor response
info@voipshield.com | Privacy Policy | Sitemap
Copyright © VoIPshield Systems Inc. All rights reserved.