Nortel Response to Microsoft Security Bulletin MS08-030
| Description: |
On June 10, 2008, Microsoft released a security update MS08-030 - Vulnerability in Bluetooth Stack Could Allow Remote Code Execution (951376). Some Nortel products contain this software as a component and thus are potentially affected by the vulnerabilities addressed. This bulletin provides a multi-product consolidated response for the Nortel products which are potentially affected. MS08-030 addresses the following potential vulnerabilities: 1. CVE-2008-1453 (http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1453) A remote code execution vulnerability exists in the Bluetooth stack in Microsoft Windows because the Bluetooth stack does not correctly handle a large number of service description requests. The vulnerability could allow an attacker to run code with elevated privileges. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete date; or create new accounts with full user rights. Impact of Vulnerability: Remote Code Execution Maximum Severity Rating: Critical Before taking any action please ensure that you are viewing the latest official version of this security advisory by referencing http://www.nortel.com/securityadvisories For more information: Please contact your next level of support or visit http://www.nortel.com/contact for support numbers within your region. Nortel security advisories: http://nortel.com/securityadvisories Nortel Partner Information Center (PIC) website: http://www.nortelnetworks.com/pic |
| Type: |
All Bulletin Types |
| Number: |
2008008895, Rev 1 |
| Status: |
Retired |
| Date: |
2008-10-17 |
Content Unavailable
This content is no longer available on the Technical Support web site.
Associated Products
