CVE-2008-3811

2008-09-2616:21:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2008-3811

cisco ios

nat

sccp

fragmentation

dos

vulnerability

6.7 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.021 Low

EPSS

Percentile

89.0%

JSON

Cisco IOS 12.2 and 12.4, when NAT Skinny Call Control Protocol (SCCP) Fragmentation Support is enabled, allows remote attackers to cause a denial of service (device reload) via segmented SCCP messages, aka Cisco Bug ID CSCsi17020, a different vulnerability than CVE-2008-3810.

CPENameOperatorVersion
cisco:ioscisco ioseq12.4t
cisco:ioscisco ioseq12.4xj
cisco:ioscisco ioseq12.4xl
cisco:ioscisco ioseq12.4xm
cisco:ioscisco ioseq12.4mr
cisco:ioscisco ioseq12.4xt
cisco:ioscisco ioseq12.4xf
cisco:ioscisco ioseq12.4xg
cisco:ioscisco ioseq12.4xv
cisco:ioscisco ioseq12.4xw

CPE	Name	Operator	Version
cisco:ios	cisco ios	eq	12.4t
cisco:ios	cisco ios	eq	12.4xj
cisco:ios	cisco ios	eq	12.4xl
cisco:ios	cisco ios	eq	12.4xm
cisco:ios	cisco ios	eq	12.4mr
cisco:ios	cisco ios	eq	12.4xt
cisco:ios	cisco ios	eq	12.4xf
cisco:ios	cisco ios	eq	12.4xg
cisco:ios	cisco ios	eq	12.4xv
cisco:ios	cisco ios	eq	12.4xw