Unrated severityNVD Advisory· Published Apr 27, 2007· Updated Apr 23, 2026

CVE-2007-2334

Description

Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 5_05.149, 5_05.3xx before 5_05.304, and 6.x before 6_05.140 has two template HTML files lacking certain verification tags, which allows remote attackers to access the administration interface and change the device configuration via certain requests.

Affected products

Nortel/Contivity3 versions
cpe:2.3:h:nortel:contivity:1000_vpn_switch:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:h:nortel:contivity:1000_vpn_switch:*:*:*:*:*:*:*
- cpe:2.3:h:nortel:contivity:2000_vpn_switch:*:*:*:*:*:*:*
- cpe:2.3:h:nortel:contivity:4000_vpn_switch:*:*:*:*:*:*:*
Nortel/VPN Router 5000
cpe:2.3:h:nortel:vpn_router_5000:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/24962nvdPatchVendor Advisory
www.securitytracker.com/idnvdPatch
www130.nortelnetworks.com/go/main.jspnvdPatchVendor Advisory
osvdb.org/35056nvd
www.securityfocus.com/bid/23562nvd
www.vupen.com/english/advisories/2007/1464nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000