Unrated severityNVD Advisory· Published Apr 27, 2007· Updated Apr 23, 2026

CVE-2007-2332

Description

Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 6_05.140 uses a fixed DES key to encrypt passwords, which allows remote authenticated users to obtain a password via a brute force attack on a hash from the LDAP store.

Affected products

Nortel/VPN Router 1010
cpe:2.3:h:nortel:vpn_router_1010:*:*:*:*:*:*:*:*
Nortel/VPN Router 1050
cpe:2.3:h:nortel:vpn_router_1050:*:*:*:*:*:*:*:*
Nortel/VPN Router 1100
cpe:2.3:h:nortel:vpn_router_1100:*:*:*:*:*:*:*:*
Nortel/VPN Router 1700
cpe:2.3:h:nortel:vpn_router_1700:*:*:*:*:*:*:*:*
Nortel/VPN Router 1740
cpe:2.3:h:nortel:vpn_router_1740:*:*:*:*:*:*:*:*
Nortel/VPN Router 1750
cpe:2.3:h:nortel:vpn_router_1750:*:*:*:*:*:*:*:*
Nortel/VPN Router 2700
cpe:2.3:h:nortel:vpn_router_2700:*:*:*:*:*:*:*:*
Nortel/VPN Router 5000
cpe:2.3:h:nortel:vpn_router_5000:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/24962nvdVendor Advisory
www.securityfocus.com/bid/23562nvd
www.vupen.com/english/advisories/2007/1464nvd
www130.nortelnetworks.com/go/main.jspnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000