Nortel: Technical Support: Nortel Response to Sun Alert 200864 - Solaris DoS Under a TCP "SYN Flood" Attack

You are currently browsing our site with javascriptdisabled. Some features may be unavailable. Learn more about viewing our site.

Welcome, Guest

Help Using This Site

Nortel Response to Sun Alert 200864 - Solaris DoS Under a TCP "SYN Flood" Attack

Description:	Sun Microsystems has recently issued Sun Alert 200864 - Security Vulnerability in the TCP Implementation of Solaris Systems May Allow a Denial of Service When Accepting New Connections While Undergoing a TCP "SYN Flood" Attack. Some Nortel products contain this software as a component and thus are potentially affected by the vulnerabilities addressed. This bulletin provides a multi-product consolidated response for the Nortel products which are potentially affected. Sun Alert 200864 (http://sunsolve.sun.com/search/document.do?assetkey=1-66-200864-1) This bulletin addresses the following potential vulnerability: 1. CVE-2008-2121 (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2121) The TCP implementation in Sun Solaris 8, 9, and 10 allows remote attackers to cause a denial of service (CPU consumption and new connection timeouts) via a TCP SYN flood attack. Before taking any action please ensure that you are viewing the latest official version of this security advisory by referencing http://www.nortel.com/securityadvisories
Type:	Security Advisories
Number:	2008008915, Rev 1
Status:	Retired
Date:	2009-01-09

Show Associated Products

Bulletin Downloads

		Title	Extension	File Size	Language
		Nortel Response to Sun Alert 200864 - Solaris DoS Under a TCP "SYN Flood" Attack Checksum: d0e38b18c797cc3453a91c30dbf68bf9 [MD5]	[pdf]	23113 bytes	English

Associated Products

Application Server 5200

Bulletin temp product

CDMA Network Manager

CDMA SuperNode Data Manager

Circuit Switching

Communication Server 2000

Communication Server 2000 Core Manager

Communication Server 2000 Session Server Trunks

Communication Server 2000-Compact

Communication Server 2100

DMS-100/200 Local Switching Systems

DMS-Global Services Platform

DMS-STP/SSP IntegratedNode (INode)

Enterprise Network Management System

Enterprise Policy Manager

Extended Peripheral Module (XPM)

GSM-UMTS Home Location Register

GSM-UMTS Mobile Switching Center Server

GSM-UMTS SuperNode Data Manager

Integrated Access - Cable

Integrated Element Management System (IEMS)

IP Address Domain Manager

Media Gateway 9000

Media Processing Server (MPS) 100

Media Processing Server (MPS) 1000

Media Processing Server (MPS) 500

Meridian SL-100

Multimedia Communication Server 5100

Multiservice Data Manager (MDM)

Optical Manager

Optical Manager Element Adapter

Optical Multiservice Edge 6500

Optical Network Manager

Optivity Policy Services for Business Policy Switch

Optivity Telephony Manager for SL-100

Packet Transit - AAL2

Packet Transit - IP

Packet Trunking - AAL1

Periphonics Common Channel Signaling Server (CCSS)

Periphonics Computer Telephony Extension (CTX)

Periphonics PeriToolsWorkstation

Periphonics Speech Platform

Policy Services application

Preside Management for Metro Optical Networks

Self-Service Portfolio

Spectrum Peripheral Module (SPM)

Speech and Self-Service

Succession Multimedia Communications

SuperNode Data Manager

Universal Access - AAL1

Universal Access - IP

VoIP Infrastructure Solutions

Wireless Network Management System (W-NMS)