Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:4104
HistorySep 25, 2008 - 12:00 a.m.

Cisco IOS SIP多个拒绝服务漏洞

2008-09-2500:00:00
Root
www.seebug.org
19

0.016 Low

EPSS

Percentile

86.1%

JSON

发布时间:2008-09-25 录入:启明星辰
BUGTRAQ ID: 31361
CVE ID: CVE-2008-3799
CVE-2008-3800
CVE-2008-3801
CVE-2008-3802
CNCVE ID:CNCVE-20083799
CNCVE-20083800
CNCVE-20083801
CNCVE-20083802

Cisco IOS是一款流行的Internet网络操作系统。
Cisco IOS SIP实现存在多个问题,远程攻击者可以利用漏洞进行内存泄漏攻击或导致IOS设备重载。
Cisco IOS SIP协议用于管理通过IP网络的语音和视频呼叫。负责处理呼叫设置和终止。
Cisco IOS SIP协议实现存在多个拒绝服务攻击,这些问题可通过处理合法SIP消息来触发。
-内存泄漏问题
CSCse56800可是受影响设备触发内存泄漏,处理特定类型的合法SIP消息时可触发内存泄漏,最终导致破坏所有语音服务,即使Cisco IOS设备还是在继续运行。此漏洞CVE ID为CVE-2008-3799。
-处理特定和合法的SIP消息时可触发Cisco IOS设备重载,相关的Cisco bug ID和CVE ID为:

  • CSCsg91306, CVE ID CVE-2008-3800
  • CSCsl62609, CVE ID CVE-2008-3801
  • CSCsk42759, CVE ID CVE-2008-3802

Cisco IOS 12.4XY
Cisco IOS 12.4XW
Cisco IOS 12.4XV
Cisco IOS 12.4XT
Cisco IOS 12.4XP
Cisco IOS 12.4XL
Cisco IOS 12.4XJ
Cisco IOS 12.4XE
Cisco IOS 12.4XD
Cisco IOS 12.4XC
Cisco IOS 12.4XB
Cisco IOS 12.4XA
Cisco IOS 12.4T
Cisco IOS 12.4MR
Cisco IOS 12.4
Cisco IOS 12.3ZA
Cisco IOS 12.3YZ
Cisco IOS 12.3YX
Cisco IOS 12.3YU
Cisco IOS 12.3YT
Cisco IOS 12.3YS
Cisco IOS 12.3YQ
Cisco IOS 12.3YM
Cisco IOS 12.3YK
Cisco IOS 12.3YG
Cisco IOS 12.3YE
Cisco IOS 12.3XZ
Cisco IOS 12.3XY
Cisco IOS 12.3XX
Cisco IOS 12.3XW
Cisco IOS 12.3XV
Cisco IOS 12.3XU
Cisco IOS 12.3XR
Cisco IOS 12.3XQ
Cisco IOS 12.3XL
Cisco IOS 12.3XK
Cisco IOS 12.3XJ
Cisco IOS 12.3XI
Cisco IOS 12.3XH
Cisco IOS 12.3XG
Cisco IOS 12.3XF
Cisco IOS 12.3XE
Cisco IOS 12.3XD
Cisco IOS 12.3XC
Cisco IOS 12.3XB
Cisco IOS 12.3XA
Cisco IOS 12.3VA
Cisco IOS 12.3TPC
Cisco IOS 12.3T
Cisco IOS 12.3B
Cisco IOS 12.3
Cisco IOS 12.2ZP
Cisco IOS 12.2ZL
Cisco IOS 12.2ZJ
Cisco IOS 12.2ZH
Cisco IOS 12.2ZF
Cisco IOS 12.2ZE
Cisco IOS 12.2ZD
Cisco IOS 12.2ZC
Cisco IOS 12.2ZB
Cisco IOS 12.2YY
Cisco IOS 12.2YW
Cisco IOS 12.2YV
Cisco IOS 12.2YU
Cisco IOS 12.2YT
Cisco IOS 12.2YN
Cisco IOS 12.2YM
Cisco IOS 12.2YL
Cisco IOS 12.2YJ
Cisco IOS 12.2YH
Cisco IOS 12.2YF
Cisco IOS 12.2YD
Cisco IOS 12.2YC
Cisco IOS 12.2YB
Cisco IOS 12.2YA
Cisco IOS 12.2XW
Cisco IOS 12.2XU
Cisco IOS 12.2XT
Cisco IOS 12.2XM
Cisco IOS 12.2XB
Cisco IOS 12.2TPC
Cisco IOS 12.2T
Cisco IOS 12.2MC
Cisco IOS 12.2CZ
Cisco IOS 12.2BY
Cisco IOS 12.2BX
Cisco IOS 12.2B
可参考如下安全公告获得补丁信息:
<a href=“http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01562.shtml” target=“_blank”>http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01562.shtml</a>

Related

nessus 1
securityvulns 3
cisco 2
prion 4
cve 4
seebug 1
nessus
nessus
Multiple Cisco IOS Session Initiation Protocol Denial of Service Vulnerabilities
2010-09-01 00:00:00
securityvulns
securityvulns
Cisco Security Advisory: Multiple Cisco IOS Session Initiation Protocol Denial of Service Vulnerabilities
2008-09-29 00:00:00
Cisco Security Advisory: Cisco Unified Communications Manager Session Initiation Protocol Denial of Service Vulnerabilities
2008-09-29 00:00:00
Cisco IOS, Cisco 10000, uBR10012, uBR7200 and Cisco UCM multiple security vulnerabilities
2008-09-29 00:00:00
cisco
cisco
Multiple Cisco IOS Session Initiation Protocol Denial of Service Vulnerabilities
2008-09-24 16:00:00
Cisco Unified Communications Manager Session Initiation Protocol Denial of Service Vulnerabilities
2008-09-24 16:00:00
prion
prion
Design/Logic Flaw
2008-09-26 16:21:00
Design/Logic Flaw
2008-09-26 16:21:00
Design/Logic Flaw
2008-09-26 16:21:00
cve
cve
CVE-2008-3802
2008-09-26 16:21:00
CVE-2008-3801
2008-09-26 16:21:00
CVE-2008-3800
2008-09-26 16:21:00
seebug
seebug
Cisco Unified Communications Manager SIP服务拒绝服务漏洞
2008-09-26 00:00:00

0.016 Low

EPSS

Percentile

86.1%

JSON
Related for SSV:4104
nessus1securityvulns3cisco2prion4cve4seebug1