{"api_version":"1","generated_at":"2026-04-23T11:32:25+00:00","cve":"CVE-2004-0056","urls":{"html":"https://cve.report/CVE-2004-0056","api":"https://cve.report/api/cve/CVE-2004-0056.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2004-0056","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2004-0056"},"summary":{"title":"CVE-2004-0056","description":"Multiple vulnerabilities in the H.323 protocol implementation for Nortel Networks Business Communications Manager (BCM), Succession 1000 IP Trunk and IP Peer Networking, and 802.11 Wireless IP Gateway allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.","state":"PUBLISHED","assigner":"mitre","published_at":"2004-02-17 05:00:00","updated_at":"2025-04-03 01:03:51"},"problem_types":["NVD-CWE-Other","n/a"],"metrics":[{"version":"2.0","source":"nvd@nist.gov","type":"Primary","score":"7.5","severity":"","vector":"AV:N/AC:L/Au:N/C:P/I:P/A:P","data":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"}}],"references":[{"url":"http://www.securitytracker.com/id?1008687","name":"http://www.securitytracker.com/id?1008687","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Nortel Business Communications Manager H.323 Flaws Let Remote Users Deny Service - SecurityTracker","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.uniras.gov.uk/vuls/2004/006489/h323.htm","name":"http://www.uniras.gov.uk/vuls/2004/006489/h323.htm","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"text/html","httpstatus":"-1","archivestatus":"200"},{"url":"http://www.securityfocus.com/bid/9406","name":"http://www.securityfocus.com/bid/9406","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Multiple Vendor H.323 Protocol Implementation Vulnerabilities","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"http://www.cert.org/advisories/CA-2004-01.html","name":"http://www.cert.org/advisories/CA-2004-01.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory","US Government Resource"],"title":"CERT Advisory CA-2004-01 Multiple H.323 Message Vulnerabilities","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.kb.cert.org/vuls/id/749342","name":"http://www.kb.cert.org/vuls/id/749342","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory","US Government Resource"],"title":"US-CERT Vulnerability Note VU#749342","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2004-0056","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2004-0056","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"n/a","product":"n/a","version":"affected n/a","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2004","cve_id":"56","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"nortel","cpe5":"802.11_wireless_ip_gateway","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2004","cve_id":"56","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"nortel","cpe5":"business_communications_manager","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2004","cve_id":"56","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"nortel","cpe5":"succession_communication_server_1000","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-08T00:01:23.649Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"name":"9406","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/9406"},{"name":"VU#749342","tags":["third-party-advisory","x_refsource_CERT-VN","x_transferred"],"url":"http://www.kb.cert.org/vuls/id/749342"},{"name":"1008687","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://www.securitytracker.com/id?1008687"},{"tags":["x_refsource_MISC","x_transferred"],"url":"http://www.uniras.gov.uk/vuls/2004/006489/h323.htm"},{"name":"CA-2004-01","tags":["third-party-advisory","x_refsource_CERT","x_transferred"],"url":"http://www.cert.org/advisories/CA-2004-01.html"}],"title":"CVE Program Container"}],"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2004-01-13T00:00:00.000Z","descriptions":[{"lang":"en","value":"Multiple vulnerabilities in the H.323 protocol implementation for Nortel Networks Business Communications Manager (BCM), Succession 1000 IP Trunk and IP Peer Networking, and 802.11 Wireless IP Gateway allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2007-11-13T00:00:00.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"name":"9406","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/9406"},{"name":"VU#749342","tags":["third-party-advisory","x_refsource_CERT-VN"],"url":"http://www.kb.cert.org/vuls/id/749342"},{"name":"1008687","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://www.securitytracker.com/id?1008687"},{"tags":["x_refsource_MISC"],"url":"http://www.uniras.gov.uk/vuls/2004/006489/h323.htm"},{"name":"CA-2004-01","tags":["third-party-advisory","x_refsource_CERT"],"url":"http://www.cert.org/advisories/CA-2004-01.html"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2004-0056","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Multiple vulnerabilities in the H.323 protocol implementation for Nortel Networks Business Communications Manager (BCM), Succession 1000 IP Trunk and IP Peer Networking, and 802.11 Wireless IP Gateway allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"9406","refsource":"BID","url":"http://www.securityfocus.com/bid/9406"},{"name":"VU#749342","refsource":"CERT-VN","url":"http://www.kb.cert.org/vuls/id/749342"},{"name":"1008687","refsource":"SECTRACK","url":"http://www.securitytracker.com/id?1008687"},{"name":"http://www.uniras.gov.uk/vuls/2004/006489/h323.htm","refsource":"MISC","url":"http://www.uniras.gov.uk/vuls/2004/006489/h323.htm"},{"name":"CA-2004-01","refsource":"CERT","url":"http://www.cert.org/advisories/CA-2004-01.html"}]}}}},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2004-0056","datePublished":"2004-01-15T05:00:00.000Z","dateReserved":"2004-01-14T00:00:00.000Z","dateUpdated":"2024-08-08T00:01:23.649Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"},"nvd":{"publishedDate":"2004-02-17 05:00:00","lastModifiedDate":"2025-04-03 01:03:51","problem_types":["NVD-CWE-Other","n/a"],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":true,"userInteractionRequired":false}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nortel:business_communications_manager:*:*:*:*:*:*:*:*","matchCriteriaId":"FF566B8B-8B96-4D21-A351-A384D4158449"},{"vulnerable":true,"criteria":"cpe:2.3:h:nortel:802.11_wireless_ip_gateway:*:*:*:*:*:*:*:*","matchCriteriaId":"5052ED35-0CE3-461F-8766-CB459EA3FFA0"},{"vulnerable":true,"criteria":"cpe:2.3:h:nortel:succession_communication_server_1000:*:*:*:*:*:*:*:*","matchCriteriaId":"2A0CB855-CDD4-42B7-9328-64B10F5A3A4D"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2004","CveId":"56","Ordinal":"1","Title":"CVE-2004-0056","CVE":"CVE-2004-0056","Year":"2004"},"notes":[{"CveYear":"2004","CveId":"56","Ordinal":"1","NoteData":"Multiple vulnerabilities in the H.323 protocol implementation for Nortel Networks Business Communications Manager (BCM), Succession 1000 IP Trunk and IP Peer Networking, and 802.11 Wireless IP Gateway allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.","Type":"Description","Title":"CVE-2004-0056"},{"CveYear":"2004","CveId":"56","Ordinal":"2","NoteData":"2004-01-15","Type":"Other","Title":"Published"},{"CveYear":"2004","CveId":"56","Ordinal":"3","NoteData":"2007-11-12","Type":"Other","Title":"Modified"}]}}}