1. Manuals
  2. Brands
  3. ADTRAN Manuals
  4. VoIP
  5. NetVanta 7000 Series
  6. Manual

Netvanta 7100 Security Vulnerability; System Notes - ADTRAN NetVanta 7000 Manual

Netvanta 7000 series products
Hide thumbs Also See for NetVanta 7000:
Table of Contents

Advertisement

NetVanta 7000 Series Release Notes R10.7.1
this new functionality. Please review the changes under the IP Phone configuration page and regenerate
the phone configurations by using the admin login and browse to Voice>IP Phone Globals>Default
Settings>, select "New and Existing Configurations" and select Apply.
2. SPRE code dialing from an SLA could interfere with existing configurations if SPRE codes were used
on SLA's prior to this release. Plese review your configuration to determine if SPRE codes were allowed
prior to the upgrade (check SLA dial plans) and if so, you will need to configure the following command
voice spre-mode override <*xx> using the appropriate codes in place of xx.

NetVanta 7100 Security Vulnerability

Summary
This security update resolves privately disclosed vulnerabilities in ADTRAN's NetVanta 7100 that can
occur with the 7100 GUI login page. The resolution included code changes to suppress echoing injections.
Also addressed was a potential exploit of a SSL renegotiation.
This security update is rated Critical for the NetVanta 7100.
Recommendation
Customers should upgrade to R10.7.1.
release.
Known Issues
None

System Notes

This section outlines known caveats for AOS version R10.7.1.
• The match ani command used for ANI substitution will match on the received ANI prior to any global
ANI substitutions. The match ani command used for adding or substituting diversion headers will match
on the modified ANI after the global ANI substitutions are applied.
• During conferences that use the conference bridge in UC Server, when one member in a conference
places the call on hold, music may stream to all members that have joined the conference.
• Caller ID does not display on pickup *52xxxx*.
• The Personal Phone Manager's User Status monitoring list may return the list from the previous user's
browser session if more than one user shares the desktop browser.
The work around is to delete all cookies and restart the browser.
• Calls with caller IDs that contain special characters can be disconnected when placed on hold by an
Advatel IP Console.
Copyright © 2013 ADTRAN, Inc.
Go to the
NetVanta 7000 firmware
NetVanta 7100 Security Vulnerability
page to download this AOS
7

Advertisement

Table of Contents
loading

Related Manuals for ADTRAN NetVanta 7000

Related Products for ADTRAN NetVanta 7000

Table of Contents