CVE-2008-3801

Опубликовано: 26 сент. 2008

Источник: nvd

CVSS2: 7.1

EPSS Низкий

Описание

Unspecified vulnerability in the Session Initiation Protocol (SIP) implementation in Cisco IOS 12.2 through 12.4 and Unified Communications Manager 4.1 through 6.1, when VoIP is configured, allows remote attackers to cause a denial of service (device or process reload) via unspecified valid SIP messages, aka Cisco Bug ID CSCsm46064, a different vulnerability than CVE-2008-3800 and CVE-2008-3802.

Ссылки

http://secunia.com/advisories/31990
Third Party Advisory
http://secunia.com/advisories/32013
Third Party Advisory
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01562.shtml
Vendor Advisory
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a0156a.shtml
Vendor Advisory
http://www.securityfocus.com/bid/31367
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1020939
Broken Link
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1020942
Broken Link
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2008/2670
Permissions Required
http://www.vupen.com/english/advisories/2008/2671
Permissions Required
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6047
Third Party Advisory
http://secunia.com/advisories/31990
Third Party Advisory
http://secunia.com/advisories/32013
Third Party Advisory
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01562.shtml
Vendor Advisory
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a0156a.shtml
Vendor Advisory
http://www.securityfocus.com/bid/31367
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1020939
Broken Link
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1020942
Broken Link
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2008/2670
Permissions Required
http://www.vupen.com/english/advisories/2008/2671
Permissions Required
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6047
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:cisco:unified_callmanager:4.1:*:*:*:*:*:*:*

cpe:2.3:a:cisco:unified_callmanager:4.2:*:*:*:*:*:*:*

cpe:2.3:a:cisco:unified_callmanager:4.3:*:*:*:*:*:*:*

cpe:2.3:a:cisco:unified_communications_manager:4.1:*:*:*:*:*:*:*

cpe:2.3:a:cisco:unified_communications_manager:5.0:*:*:*:*:*:*:*

cpe:2.3:a:cisco:unified_communications_manager:5.1:*:*:*:*:*:*:*

cpe:2.3:a:cisco:unified_communications_manager:6.1:*:*:*:*:*:*:*

cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*

cpe:2.3:o:cisco:ios:12.3:*:*:*:*:*:*:*

cpe:2.3:o:cisco:ios:12.4:*:*:*:*:*:*:*

EPSS

Процентиль: 83%

0.01935

Низкий

7.1 High

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-9gcq-w2xv-xvf8

github

почти 4 года назад