Lucene search

PRIOn knowledge basePRION:CVE-2008-3812

HistorySep 26, 2008 - 4:21 p.m.

Design/Logic Flaw

2008-09-2616:21:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

High

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.013 Low

EPSS

Percentile

85.8%

JSON

Cisco IOS 12.4, when IOS firewall Application Inspection Control (AIC) with HTTP Deep Packet Inspection is enabled, allows remote attackers to cause a denial of service (device reload) via a malformed HTTP transit packet.

CPENameOperatorVersion
ioseq12.4.116
ioseq12.4.0-xj
ioseq12.4.0-xv
ioseq12.4.0-xw
ioseq12.4.0-xk
ioseq12.4.0-xe

Name	Operator	Version
ios	eq	12.4.116
ios	eq	12.4.0-xj
ios	eq	12.4.0-xv
ios	eq	12.4.0-xw
ios	eq	12.4.0-xk
ios	eq	12.4.0-xe

References

secunia.com/advisories/31990

tools.cisco.com/security/center/viewAlert.x?alertId=16661

www.cisco.com/en/US/products/products_security_advisory09186a0080a01545.shtml

www.securityfocus.com/bid/31354

www.securitytracker.com/id?1020929

www.vupen.com/english/advisories/2008/2670

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5302

6.8 Medium

AI Score

Confidence

High

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.013 Low

EPSS

Percentile

85.8%

JSON

Related for PRION:CVE-2008-3812