Lucene search

[email protected]CVE-2008-3801

HistorySep 26, 2008 - 4:21 p.m.

CVE-2008-3801

2008-09-2616:21:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cisco

sip

vulnerability

cisco ios

unified communications manager

denial of service

cve-2008-3801

nvd

6.7 Medium

AI Score

Confidence

Low

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.018 Low

EPSS

Percentile

87.9%

JSON

Unspecified vulnerability in the Session Initiation Protocol (SIP) implementation in Cisco IOS 12.2 through 12.4 and Unified Communications Manager 4.1 through 6.1, when VoIP is configured, allows remote attackers to cause a denial of service (device or process reload) via unspecified valid SIP messages, aka Cisco Bug ID CSCsm46064, a different vulnerability than CVE-2008-3800 and CVE-2008-3802.

CPENameOperatorVersion
cisco:unified_callmanagercisco unified callmanagereq4.2
cisco:unified_communications_managercisco unified communications managereq5.0
cisco:ioscisco ioseq12.3
cisco:unified_communications_managercisco unified communications managereq6.1
cisco:unified_callmanagercisco unified callmanagereq4.1
cisco:unified_callmanagercisco unified callmanagereq4.3
cisco:ioscisco ioseq12.4
cisco:unified_communications_managercisco unified communications managereq4.1
cisco:ioscisco ioseq12.2
cisco:unified_communications_managercisco unified communications managereq5.1

CPE	Name	Operator	Version
cisco:unified_callmanager	cisco unified callmanager	eq	4.2
cisco:unified_communications_manager	cisco unified communications manager	eq	5.0
cisco:ios	cisco ios	eq	12.3
cisco:unified_communications_manager	cisco unified communications manager	eq	6.1
cisco:unified_callmanager	cisco unified callmanager	eq	4.1
cisco:unified_callmanager	cisco unified callmanager	eq	4.3
cisco:ios	cisco ios	eq	12.4
cisco:unified_communications_manager	cisco unified communications manager	eq	4.1
cisco:ios	cisco ios	eq	12.2
cisco:unified_communications_manager	cisco unified communications manager	eq	5.1

References

secunia.com/advisories/31990

secunia.com/advisories/32013

www.cisco.com/en/US/products/products_security_advisory09186a0080a01562.shtml

www.cisco.com/en/US/products/products_security_advisory09186a0080a0156a.shtml

www.securityfocus.com/bid/31367

www.securitytracker.com/id?1020939

www.securitytracker.com/id?1020942

www.vupen.com/english/advisories/2008/2670

www.vupen.com/english/advisories/2008/2671

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6047

6.7 Medium

AI Score

Confidence

Low

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.018 Low

EPSS

Percentile

87.9%

JSON

Related for CVE-2008-3801

cve2 prion3 securityvulns3 seebug2 cisco2 nessus1