CVE-2008-3801

Sažetak

Unspecified vulnerability in the Session Initiation Protocol (SIP) implementation in Cisco IOS 12.2 through 12.4 and Unified Communications Manager 4.1 through 6.1, when VoIP is configured, allows remote attackers to cause a denial of service (device or process reload) via unspecified valid SIP messages, aka Cisco Bug ID CSCsm46064, a different vulnerability than CVE-2008-3800 and CVE-2008-3802.

Reference

http://www.cisco.com/en/US/products/products_security_advisory09186a0080a0156a.shtml
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01562.shtml
http://secunia.com/advisories/32013
http://secunia.com/advisories/31990
http://www.securityfocus.com/bid/31367
http://www.vupen.com/english/advisories/2008/2670
http://www.vupen.com/english/advisories/2008/2671
http://www.securitytracker.com/id?1020942
http://www.securitytracker.com/id?1020939
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6047

CVSS

Base:	7.1
Impact:	6.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:N/A:C

Zadnje važnije ažuriranje

02-06-2022 - 17:12

Objavljeno

26-09-2008 - 16:21