ByteOS Network

NVD Vulnerability Details :

CVE-2007-2333

Modified

Source-cve@mitre.org

Published At-27 Apr, 2007 | 16:19

Updated At-08 Mar, 2011 | 02:54

Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 5_05.149, 5_05.3xx before 5_05.304, and 6.x before 6_05.140 includes the FIPSecryptedtest1219 and FIPSunecryptedtest1219 default accounts in the LDAP template, which might allow remote attackers to access the private network.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C

CPE Matches

Weaknesses

CWE ID	Type	Source
NVD-CWE-Other	Primary	nvd@nist.gov

Evaluator Solution

The vendor has addressed this issue through a product update that can be found at: http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=567877&RenditionID=&poid=null

References

Hyperlink	Source	Resource
http://osvdb.org/35055	cve@mitre.org	N/A
http://secunia.com/advisories/24962	cve@mitre.org	Patch Vendor Advisory
http://www.securityfocus.com/bid/23562	cve@mitre.org	N/A
http://www.securitytracker.com/id?1017943	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2007/1464	cve@mitre.org	N/A
http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=567877&RenditionID=&poid=null	cve@mitre.org	Patch

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History