← Back

Nortel

nortel

44 CVEs • 88 products

Products (88)

Click to collapse
Toggle
Contivity
contivity
9 CVEs
Mobile Voice Client 2050
mobile_voice_client_2050
6 CVEs
Business Communications Manager
business_communications_manager
5 CVEs
Ip Softphone 2050
ip_softphone_2050
5 CVEs
Vpn Router 5000
vpn_router_5000
4 CVEs
Meridian Option 11c
meridian_option_11c
4 CVEs
Meridian Option 51c
meridian_option_51c
4 CVEs
Meridian Option 61c
meridian_option_61c
4 CVEs
Meridian Option 81c
meridian_option_81c
4 CVEs
Cs1000
cs1000
4 CVEs
Centrex Ip Client Manager
centrex_ip_client_manager
3 CVEs
Centrex Ip Element Manager
centrex_ip_element_manager
3 CVEs
Meridian Sl100
meridian_sl100
3 CVEs
Succession Communication Server 1000
succession_communication_server_1000
2 CVEs
Optivity Telephony Manager
optivity_telephony_manager
2 CVEs
Symposium Web Centre Portal
symposium_web_centre_portal
2 CVEs
Symposium Web Client
symposium_web_client
2 CVEs
Vpn Router 1010
vpn_router_1010
2 CVEs
Vpn Router 1050
vpn_router_1050
2 CVEs
Vpn Router 1100
vpn_router_1100
2 CVEs
Vpn Router 1700
vpn_router_1700
2 CVEs
Vpn Router 1740
vpn_router_1740
2 CVEs
Vpn Router 2700
vpn_router_2700
2 CVEs
Callpilot
callpilot
2 CVEs
Multimedia Communication Server 5100
multimedia_communication_server_5100
2 CVEs
Nautica Marlin
nautica_marlin
1 CVE
Alteon Acedirector
alteon_acedirector
1 CVE
Cvx 1800 Multi Service Access Switch
cvx_1800_multi-service_access_switch
1 CVE
Succession Communication Server 2000
succession_communication_server_2000
1 CVE
802.11 Wireless Ip Gateway
802.11_wireless_ip_gateway
1 CVE
Media Communication Server 5100
media_communication_server_5100
1 CVE
Media Communication Server 5200
media_communication_server_5200
1 CVE
Media Processing Server
media_processing_server
1 CVE
Periphonics
periphonics
1 CVE
Symposium Agent
symposium_agent
1 CVE
Symposium Network Control Center
symposium_network_control_center
1 CVE
Symposium Tapi Service Provider
symposium_tapi_service_provider
1 CVE
Symposium Call Center Server
symposium_call_center_server
1 CVE
Symposium Express Call Center
symposium_express_call_center
1 CVE
Wlan Access Point 2220
wlan_access_point_2220
1 CVE
Wlan Access Point 2221
wlan_access_point_2221
1 CVE
Wlan Access Point 2225
wlan_access_point_2225
1 CVE
Vpn Router 600
vpn_router_600
1 CVE
Contact Center
contact_center
1 CVE
7220 Wlan Access Point
7220_wlan_access_point
1 CVE
7250 Wlan Access Point
7250_wlan_access_point
1 CVE
Ethernet Routing Switch 1612
ethernet_routing_switch_1612
1 CVE
Ethernet Routing Switch 1624
ethernet_routing_switch_1624
1 CVE
Ethernet Routing Switch 1648
ethernet_routing_switch_1648
1 CVE
Optical Metro 5000
optical_metro_5000
1 CVE
Optical Metro 5100
optical_metro_5100
1 CVE
Optical Metro 5200
optical_metro_5200
1 CVE
Survivable Remote Gateway
survivable_remote_gateway
1 CVE
Universal Signaling Point
universal_signaling_point
1 CVE
Ssl Vpn
ssl_vpn
1 CVE
Callpilot Server
callpilot_server
1 CVE
Net Direct Client
net_direct_client
1 CVE
Meridian Mail
meridian_mail
1 CVE
Vpn Router 1750
vpn_router_1750
1 CVE
Vpn Router Portfolio
vpn_router_portfolio
1 CVE
Communications Server
communications_server
1 CVE
Pc Client Soft Phone Sip
pc_client_soft_phone_sip
1 CVE
Sip Softphone
sip_softphone
1 CVE
Voip Core Cs
voip-core-cs
1 CVE
Multimedia Communications Server
multimedia_communications_server
1 CVE
Sip Multimedia Pc Client
sip_multimedia_pc_client
1 CVE
Unistim Ip Phone
unistim_ip_phone
1 CVE
Communication Server 1000
communication_server_1000
1 CVE
Unistim Protocol
unistim_protocol
1 CVE
Optivity Net Architect
optivity_net_architect
1 CVE
Alteon 2424 Application Switch
alteon_2424_application_switch
0 CVEs
Ssl Vpn Module 1000
ssl_vpn_module_1000
0 CVEs
Vpn Gateway 3070
vpn_gateway_3070
0 CVEs
Multimedia Communication Server 5200
multimedia_communication_server_5200
0 CVEs
Ip Audio Conference Phone 2033
ip_audio_conference_phone_2033
0 CVEs
Ip Phone 1110
ip_phone_1110
0 CVEs
Ip Phone 1120e
ip_phone_1120e
0 CVEs
Ip Phone 1140e
ip_phone_1140e
0 CVEs
Ip Phone 1150e
ip_phone_1150e
0 CVEs
Ip Phone 2001
ip_phone_2001
0 CVEs
Ip Phone 2002
ip_phone_2002
0 CVEs
Ip Phone 2004
ip_phone_2004
0 CVEs
Ip Phone 2007
ip_phone_2007
0 CVEs
Wlan Handset 2210
wlan_handset_2210
0 CVEs
Wlan Handset 2211
wlan_handset_2211
0 CVEs
Wlan Handset 2212
wlan_handset_2212
0 CVEs
Wlan Handset 6120
wlan_handset_6120
0 CVEs
Wlan Handset 6140
wlan_handset_6140
0 CVEs

CVEs (44)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2007-2333
1Nortel
3Contivity
Vpn Router 5000Vpn Router Portfolio
Apr 23, 2026
Apr 27, 2007
N/A· v4
N/A· v3
10.0 HIGH· v2
Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 5_05.149, 5_05.3xx before 5_05.304, and 6.x before 6_05.140 includes the FIPSecryptedtest1219 and FIPSunecryptedtest1219 default accounts in the LDAP te...Show more
Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 5_05.149, 5_05.3xx before 5_05.304, and 6.x before 6_05.140 includes the FIPSecryptedtest1219 and FIPSunecryptedtest1219 default accounts in the LDAP template, which might allow remote attackers to access the private network.Show less
CVE-2007-2332
1Nortel
8Vpn Router 1010
Vpn Router 1050Vpn Router 1100+5 more
Apr 23, 2026
Apr 27, 2007
N/A· v4
N/A· v3
9.0 HIGH· v2
Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 6_05.140 uses a fixed DES key to encrypt passwords, which allows remote authenticated users to obtain a password via a brute force attack on a hash from...Show more
Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 6_05.140 uses a fixed DES key to encrypt passwords, which allows remote authenticated users to obtain a password via a brute force attack on a hash from the LDAP store.Show less
CVE-2007-1820
1Nortel
2Callpilot
Meridian Mail
Apr 23, 2026
Apr 2, 2007
N/A· v4
N/A· v3
9.3 HIGH· v2
Nortel Networks CallPilot and Meridian Mail voicemail systems, when a mailbox has auto logon enabled, allow remote attackers to retrieve or remove messages, or reconfigure the mailbox, by spoofing Calling Number Identifi...Show more
Nortel Networks CallPilot and Meridian Mail voicemail systems, when a mailbox has auto logon enabled, allow remote attackers to retrieve or remove messages, or reconfigure the mailbox, by spoofing Calling Number Identification (CNID, aka Caller ID).Show less
CVE-2007-1057
1Nortel
1Net Direct Client
Apr 23, 2026
Feb 21, 2007
N/A· v4
N/A· v3
6.9 MEDIUM· v2
The Net Direct client for Linux before 6.0.5 in Nortel Application Switch 2424, VPN 3050 and 3070, and SSL VPN Module 1000 extracts and executes files with insecure permissions, which allows local users to exploit a race...Show more
The Net Direct client for Linux before 6.0.5 in Nortel Application Switch 2424, VPN 3050 and 3070, and SSL VPN Module 1000 extracts and executes files with insecure permissions, which allows local users to exploit a race condition to replace a world-writable file in /tmp/NetClient and cause another user to execute arbitrary code when attempting to execute this client, as demonstrated by replacing /tmp/NetClient/client.Show less
CVE-2006-6670
1Nortel
1Callpilot Server
Apr 23, 2026
Dec 20, 2006
N/A· v4
N/A· v3
10.0 HIGH· v2
Unspecified vulnerability in Nortel CallPilot 4.x Server has unknown impact and attack vectors, aka P-2006-0011-GLOBAL.
CVE-2005-4197
1Nortel
1Ssl Vpn
Apr 16, 2026
Dec 13, 2005
N/A· v4
N/A· v3
7.5 HIGH· v2
tunnelform.yaws in Nortel SSL VPN 4.2.1.6 allows remote attackers to execute arbitrary commands via a link in the a parameter, which is executed with extra privileges in a cryptographically signed Java Applet.
CVE-2005-2579
1Nortel
1Contivity
Apr 16, 2026
Aug 16, 2005
N/A· v4
N/A· v3
7.2 HIGH· v2
Nortel Contivity VPN Client V05_01.030, when configuring a certificate to be used as authentication, does not properly drop system privileges, which allows local users to gain privileges by opening a program with the Fil...Show more
Nortel Contivity VPN Client V05_01.030, when configuring a certificate to be used as authentication, does not properly drop system privileges, which allows local users to gain privileges by opening a program with the File Open dialog box.Show less
CVE-2005-0356
9Alaxala
CiscoF5+6 more
767220 Wlan Access Point
7250 Wlan Access PointAgent Desktop+73 more
Apr 16, 2026
May 31, 2005
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote attackers to cause a denial of service (connection loss) via a spoofed packet with a la...Show more
Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote attackers to cause a denial of service (connection loss) via a spoofed packet with a large timer value, which causes the host to discard later packets because they appear to be too old.Show less
CVE-2005-1802
1Nortel
9Contivity
Vpn Router 1010Vpn Router 1050+6 more
Apr 16, 2026
May 27, 2005
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Nortel VPN Router (aka Contivity) allows remote attackers to cause a denial of service (crash) via an IPsec IKE packet with a malformed ISAKMP header.
CVE-2005-0844
1Nortel
1Contivity
Apr 16, 2026
May 2, 2005
N/A· v4
N/A· v3
4.6 MEDIUM· v2
Nortel VPN client 5.01 stores the cleartext password in the memory of the Extranet.exe process, which could allow local users to obtain sensitive information.
CVE-2004-1105
1Nortel
1Contivity
Apr 16, 2026
Jan 10, 2005
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Nortel Networks Contivity VPN Client displays a different error message depending on whether the username is valid or invalid, which could allow remote attackers to gain sensitive information.
CVE-2004-2621
1Nortel
1Contivity
Apr 16, 2026
Dec 31, 2004
N/A· v4
N/A· v3
4.0 MEDIUM· v2
Nortel Contivity VPN Client 2.1.7, 3.00, 3.01, 4.91, and 5.01, when opening a VPN tunnel, does not check the gateway certificate until after a dialog box has been displayed to the user, which creates a race condition tha...Show more
Nortel Contivity VPN Client 2.1.7, 3.00, 3.01, 4.91, and 5.01, when opening a VPN tunnel, does not check the gateway certificate until after a dialog box has been displayed to the user, which creates a race condition that allows remote attackers to perform a man-in-the-middle (MITM) attack.Show less
CVE-2004-2549
1Nortel
3Wlan Access Point 2220
Wlan Access Point 2221Wlan Access Point 2225
Apr 16, 2026
Dec 31, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Nortel Wireless LAN (WLAN) Access Point (AP) 2220, 2221, and 2225 allow remote attackers to cause a denial of service (service crash) via a TCP request with a large string, followed by 8 newline characters, to (1) the Te...Show more
Nortel Wireless LAN (WLAN) Access Point (AP) 2220, 2221, and 2225 allow remote attackers to cause a denial of service (service crash) via a TCP request with a large string, followed by 8 newline characters, to (1) the Telnet service on TCP port 23 and (2) the HTTP service on TCP port 80, possibly due to a buffer overflow.Show less
CVE-2004-1305
2Microsoft
Nortel
19Ip Softphone 2050
Media Communication Server 5100Media Communication Server 5200+16 more
Apr 16, 2026
Dec 23, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The Windows Animated Cursor (ANI) capability in Windows NT, Windows 2000 through SP4, Windows XP through SP1, and Windows 2003 allow remote attackers to cause a denial of service via (1) the frame number set to zero, whi...Show more
The Windows Animated Cursor (ANI) capability in Windows NT, Windows 2000 through SP4, Windows XP through SP1, and Windows 2003 allow remote attackers to cause a denial of service via (1) the frame number set to zero, which causes an invalid memory address to be used and leads to a kernel crash, or (2) the rate number set to zero, which leads to resource exhaustion and hang.Show less
CVE-2004-1319
2Microsoft
Nortel
9Ip Softphone 2050
Mobile Voice Client 2050Optivity Telephony Manager+6 more
Apr 16, 2026
Dec 15, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The DHTML Edit Control (dhtmled.ocx) allows remote attackers to inject arbitrary web script into other domains by setting a name for a window, opening a child page whose target is the window with the given name, then inj...Show more
The DHTML Edit Control (dhtmled.ocx) allows remote attackers to inject arbitrary web script into other domains by setting a name for a window, opening a child page whose target is the window with the given name, then injecting the script from the parent into the child using execScript, as demonstrated by "AbusiveParent" in Internet Explorer 6.0.2900.2180.Show less
CVE-2004-0839
3Avaya
MicrosoftNortel
18Definity One Media Server
IeInternet Explorer+15 more
Apr 16, 2026
Aug 18, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Internet Explorer in Windows XP SP2, and other versions including 5.01 and 5.5, allows remote attackers to install arbitrary programs via a web page that uses certain styles and the AnchorClick behavior, popup windows, a...Show more
Internet Explorer in Windows XP SP2, and other versions including 5.01 and 5.5, allows remote attackers to install arbitrary programs via a web page that uses certain styles and the AnchorClick behavior, popup windows, and drag-and-drop capabilities to drop the program in the local startup folder, as demonstrated by "wottapoop.html".Show less
CVE-2004-0056
1Nortel
3802.11 Wireless Ip Gateway
Business Communications ManagerSuccession Communication Server 1000
Apr 16, 2026
Feb 17, 2004
N/A· v4
N/A· v3
7.5 HIGH· v2
Multiple vulnerabilities in the H.323 protocol implementation for Nortel Networks Business Communications Manager (BCM), Succession 1000 IP Trunk and IP Peer Networking, and 802.11 Wireless IP Gateway allow remote attack...Show more
Multiple vulnerabilities in the H.323 protocol implementation for Nortel Networks Business Communications Manager (BCM), Succession 1000 IP Trunk and IP Peer Networking, and 802.11 Wireless IP Gateway allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.Show less
CVE-2003-1115
1Nortel
1Succession Communication Server 2000
Apr 16, 2026
Dec 31, 2003
N/A· v4
N/A· v3
7.5 HIGH· v2
The Session Initiation Protocol (SIP) implementation in Nortel Networks Succession Communication Server 2000, when using SIP-T, allows remote attackers to cause a denial of service and possibly execute arbitrary code via...Show more
The Session Initiation Protocol (SIP) implementation in Nortel Networks Succession Communication Server 2000, when using SIP-T, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite.Show less
CVE-2002-0540
1Nortel
1Cvx 1800 Multi Service Access Switch
Apr 16, 2026
Jul 3, 2002
N/A· v4
N/A· v3
7.5 HIGH· v2
Nortel CVX 1800 is installed with a default "public" community string, which allows remote attackers to read usernames and passwords and modify the CVX configuration.
CVE-2002-0209
1Nortel
1Alteon Acedirector
Apr 16, 2026
May 16, 2002
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Nortel Alteon ACEdirector WebOS 9.0, with the Server Load Balancing (SLB) and Cookie-Based Persistence features enabled, allows remote attackers to determine the real IP address of a web server with a half-closed session...Show more
Nortel Alteon ACEdirector WebOS 9.0, with the Server Load Balancing (SLB) and Cookie-Based Persistence features enabled, allows remote attackers to determine the real IP address of a web server with a half-closed session, which causes ACEdirector to send packets from the server without changing the address to the virtual IP address.Show less