CVE-2004-0945 : The web management interface for Mitel 3300 Integrated Communications Platform (

The web management interface for Mitel 3300 Integrated Communications Platform (ICP) before 4.2.2.11 allows remote authenticated users to cause a denial of service (resource exhaustion) via a large number of active sessions, which exceeds ICP's maximum.

Published 2005-02-28 05:00:00

Updated 2008-09-05 20:39:53

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2004-0945

Mitel » Mitel 3300 Integrated Communication Platform
cpe:2.3:h:mitel:mitel_3300_integrated_communication_platform:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2004-0945

EPSS FAQ

0.77%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 72 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2004-0945

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial

References for CVE-2004-0945

http://www.niscc.gov.uk/niscc/docs/re-20050228-00178.pdf?lang=en

Vendor Advisory

CVEs referencing this url
http://www.mitel.com/DocController?documentId=14223

Vendor Advisory

CVEs referencing this url
http://www.corsaire.com/advisories/c040817-003.txt

Vendor Advisory

Jump to

Vulnerability Details : CVE-2004-0945

Products affected by CVE-2004-0945

Exploit prediction scoring system (EPSS) score for CVE-2004-0945

CVSS scores for CVE-2004-0945

References for CVE-2004-0945