Title: Nortel Networks Multiple IPSec Products Remote Denial of Service Vulnerability
Severity: MODERATE
Description:
Multiple Nortel Networks products are reportedly prone to a remote denial-of-service vulnerability.
The issue manifests when the affected software processes bursts of small packets. The specific content and type of network traffic sufficient to trigger this issue are currently unknown.
This issue is reportedly being tracked by Nortel as support case 060110-04843.
When the network traffic is processed, the vulnerability is triggered, and the IPSec software fails to process further ESP traffic, effectively denying service for legitimate users.
Nortel IPSec client software version v04_60.51 and newer is reportedly susceptible to this issue.
Further reports indicate this issue is exploitable only through an existing IPSec tunnel and only via a valid remote access account.
Further analysis and reports have indicated that this issue is limited to the VPN Client therefore it has been determined that this does not present a security threat. This BID is being retired.
Affected Products:
- Nortel Networks Contivity 1000 VPN Switch
- Nortel Networks Contivity 1500 VPN Switch
- Nortel Networks Contivity 1600 Secure IP Services Gateway
- Nortel Networks Contivity 2000 VPN Switch
- Nortel Networks Contivity 2500 VPN Switch
- Nortel Networks Contivity 2600 Secure IP Services Gateway
- Nortel Networks Contivity 4000 VPN Switch
- Nortel Networks Contivity 4500 Secure IP Services Gateway
- Nortel Networks Contivity 4600 Secure IP Services Gateway
- Nortel Networks Contivity VPN Client 4.60.51
- Nortel Networks Contivity VPN Client 4.86.0
- Nortel Networks Contivity VPN Client 4.91.0
- Nortel Networks Contivity VPN Client 5.0.0 1_030
- Nortel Networks Contivity VPN Client 5.0.0 1_100
- Nortel Networks VPN Router
- Nortel Networks VPN Router 1010
- Nortel Networks VPN Router 1050
- Nortel Networks VPN Router 1100
- Nortel Networks VPN Router 1700
- Nortel Networks VPN Router 1740
- Nortel Networks VPN Router 2700
- Nortel Networks VPN Router 5000
- Nortel Networks VPN Router 600
References:
- Nortel Networks: Nortel Networks Homepage
- Nortel Networks: Security Advisory Bulletins
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
