CVE-2008-3800

Опубликовано: 26 сент. 2008

Источник: nvd

CVSS2: 7.1

EPSS Низкий

Описание

Unspecified vulnerability in the Session Initiation Protocol (SIP) implementation in Cisco IOS 12.2 through 12.4 and Unified Communications Manager 4.1 through 6.1, when VoIP is configured, allows remote attackers to cause a denial of service (device or process reload) via unspecified valid SIP messages, aka Cisco Bug ID CSCsu38644, a different vulnerability than CVE-2008-3801 and CVE-2008-3802.

Ссылки

http://secunia.com/advisories/31990
Third Party Advisory
http://secunia.com/advisories/32013
Third Party Advisory
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01562.shtml
Vendor Advisory
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a0156a.shtml
Vendor Advisory
http://www.securityfocus.com/bid/31367
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1020939
Broken Link
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1020942
Broken Link
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2008/2670
Permissions Required
http://www.vupen.com/english/advisories/2008/2671
Permissions Required
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6086
Broken Link
http://secunia.com/advisories/31990
Third Party Advisory
http://secunia.com/advisories/32013
Third Party Advisory
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01562.shtml
Vendor Advisory
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a0156a.shtml
Vendor Advisory
http://www.securityfocus.com/bid/31367
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1020939
Broken Link
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1020942
Broken Link
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2008/2670
Permissions Required
http://www.vupen.com/english/advisories/2008/2671
Permissions Required
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6086
Broken Link

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:cisco:unified_callmanager:4.1:*:*:*:*:*:*:*

cpe:2.3:a:cisco:unified_callmanager:4.2:*:*:*:*:*:*:*

cpe:2.3:a:cisco:unified_callmanager:4.3:*:*:*:*:*:*:*

cpe:2.3:a:cisco:unified_communications_manager:4.1:*:*:*:*:*:*:*

cpe:2.3:a:cisco:unified_communications_manager:5.0:*:*:*:*:*:*:*

cpe:2.3:a:cisco:unified_communications_manager:5.1:*:*:*:*:*:*:*

cpe:2.3:a:cisco:unified_communications_manager:6.1:*:*:*:*:*:*:*

cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*

cpe:2.3:o:cisco:ios:12.3:*:*:*:*:*:*:*

cpe:2.3:o:cisco:ios:12.4:*:*:*:*:*:*:*

EPSS

Процентиль: 83%

0.01935

Низкий

7.1 High

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-w52f-gfhm-992j

github

почти 4 года назад