PRIOn knowledge basePRION:CVE-2008-0536

HistoryMay 22, 2008 - 1:09 p.m.

Design/Logic Flaw

2008-05-2213:09:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

High

0.027 Low

EPSS

Percentile

90.5%

JSON

Unspecified vulnerability in the SSH server in (1) Cisco Service Control Engine (SCE) 3.0.x before 3.0.7 and 3.1.x before 3.1.0, and (2) Icon Labs Iconfidant SSH before 2.3.8, allows remote attackers to cause a denial of service (management interface outage) via SSH traffic that occurs during management operations and triggers “illegal I/O operations,” aka Bug ID CSCsh49563.

CPENameOperatorVersion
service_control_engineeq3.0
service_control_enginele3.1.6
iconfidant_sshle2.3.7

Name	Operator	Version
service_control_engine	eq	3.0
service_control_engine	le	3.1.6
iconfidant_ssh	le	2.3.7

References

secunia.com/advisories/30316

secunia.com/advisories/30590

securitytracker.com/id?1020074

www.cisco.com/en/US/products/products_security_advisory09186a008099bf65.shtml

www.icon-labs.com/news/read.asp?newsID=77

www.kb.cert.org/vuls/id/626979

www.securityfocus.com/bid/29316

www.securityfocus.com/bid/29609

www.vupen.com/english/advisories/2008/1604/references

www.vupen.com/english/advisories/2008/1774/references

exchange.xforce.ibmcloud.com/vulnerabilities/42566