Nortel Contivity Vpn Client Error
Contents |
Medium Date released: 20th Oct 2004 Overview The Nortel Networks Contivity VPN Client authentication error message provides more information than is necessary. I. nortel vpn client Description 1. If a valid user name and an invalid password
Nortel Vpn Client Windows 10
is given, the Contivity VPN Client displays "Login Failure due to: authentication failure" 2. If an nortel vpn client for windows 8 invalid user name is given, the Contivity VPN Client displays "Login Failed: Please verify the entered login information is correct". II. Impact The different error messages could
Avaya Vpn Client
enable a malicious person to guess valid user names in the system. III. Solution This issue is resolved in Contivity VPN Client for Windows V5.01_030 Discussion The underlying cause for this behavior is the IKE's aggressive mode protocol. Currently, there are two known facts about aggressive mode: 1 - The user names are passed in nortel networks the clear 2 - User names can be guessed using brute force Vendor's Response 1 - The Contivity VPN Client uses a proprietary hash for transmitting the user name in order to avoid sending the user name in the clear 2 - As always, we recommend safe user name and password practices to safeguard against brute force attacks. For more information on strong password practices refer to Appendix 1 of the Nortel Networks document "Nortel Networks Baseline Security Standards" which can be downloaded at Nortel Networks: Secure Networking - Securing the Network Infrastructure For enhanced security, we recommend public key authentication. Even though this issue has been addressed in ContivityVPN Client v 5.01 (the same error message of "Login Failure due to: authentication failure" is displayed for both error entries) sophisticated users could still guess if a request is rejected because of wrong UID or wrong password by observing the IKE aggressive mode exchanges. Overall, this vulnerability is inherent in IKE aggressive mod
IP isWhoisCalculatorTool PointsNewsNews tip?ForumsAll ForumsHot TopicsGalleryInfoHardwareAll FAQsSite FAQDSL FAQCable TechAboutcontactabout uscommunityISP FAQAdd ISPISP Ind. ForumsJoin Search similar:[HELP] Cisco ASA 5520 Setup and Management Port Setup[Config] Cisco 871 as IPSec server for Android client?Windows Server 2012 R2 L2TP server with a ZyXEL USG 50[Config] IPSec VPN not working properly[HELP] Small VPN conundrum![Config] NVI and VPN Forums → ISP automatic forums » Virgin Mobile Broadband → problem and solution Nortel VPN did not acknowledge banner uniqs23629 Share « New Latency Pattern http://www.niiconsulting.com/vuln/contivity.html • July 2 2011 - VM Broadband Outage- 24hrs and counting » danzig69join:2002-10-24Saint-Raymond, QC danzig69 Member 2011-Jul-12 11:14 am problem and solution Nortel VPN did not acknowledge bannerIf you receive one of these error message when you try to use the Nortel/Avaya VPN clientThe banner message from the VPN http://www.dslreports.com/forum/r26077294-problem-and-solution-Nortel-VPN-did-not-acknowledge-banner router was not received, ...ORUser did not acknowledge the banner ...In my case, using a wired internet or wifi internet, I was able to use my vpn but when i try with the Novatel Wireless Ovation MC998D usb key trought the Virgin Mobile Internet, I received the error message above.solution for me, I didn't had to ask Virgin Mobile to open any port. I had to check a box in the Nortel Contivity 1100. Menu services, IPSEC, in the section NAT Traversal, check the Enabled box and put in the UDP Port field a number like 5075.Then on the contivity, in Profiles, Groups, click on the Edit button of the group in wich your user are,IPsec Configure,NAT Traversal must be Auto-Detect NAT or Always Udp EncapAvaya VPN client Version : 10.05.012 x32Nortel Contivity 1100 : V05_00.136Ipsec with RSA hardware token workIpsec with a user