Lucene search

[email protected]CVE-2008-1156

HistoryMar 27, 2008 - 10:44 a.m.

CVE-2008-1156

2008-03-2710:44:00

CWE-200

CWE-16

[email protected]

web.nvd.nist.gov

cisco

ios

vulnerability

remote attackers

multicast

mvpn

cve-2008-1156

nvd

6.6 Medium

AI Score

Confidence

Low

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.017 Low

EPSS

Percentile

87.7%

JSON

Unspecified vulnerability in the Multicast Virtual Private Network (MVPN) implementation in Cisco IOS 12.0, 12.2, 12.3, and 12.4 allows remote attackers to create “extra multicast states on the core routers” via a crafted Multicast Distribution Tree (MDT) Data Join message.

CPENameOperatorVersion
cisco:cisco_ioscisco cisco ioseq12.3
cisco:cisco_ioscisco cisco ioseq12.4
cisco:ioscisco ioseq12.2
cisco:ioscisco ioseq12.0

CPE	Name	Operator	Version
cisco:cisco_ios	cisco cisco ios	eq	12.3
cisco:cisco_ios	cisco cisco ios	eq	12.4
cisco:ios	cisco ios	eq	12.2
cisco:ios	cisco ios	eq	12.0

References

secunia.com/advisories/29507

www.cisco.com/warp/public/707/cisco-sa-20080326-mvpn.shtml

www.securityfocus.com/bid/28464

www.securitytracker.com/id?1019715

www.us-cert.gov/cas/techalerts/TA08-087B.html

www.vupen.com/english/advisories/2008/1006/references

exchange.xforce.ibmcloud.com/vulnerabilities/41468

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5648

6.6 Medium

AI Score

Confidence

Low

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.017 Low

EPSS

Percentile

87.7%

JSON

Related for CVE-2008-1156

securityvulns2 cisco1 prion1 seebug1 cvelist1 nessus1