Vulnerability Details CVE-2008-2739
The SERVICE.DNS signature engine in the Intrusion Prevention System (IPS) in Cisco IOS 12.3 and 12.4 allows remote attackers to cause a denial of service (device crash or hang) via network traffic that triggers unspecified IPS signatures, a different vulnerability than CVE-2008-1447.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.2%
CVSS Severity
CVSS v2 Score 7.8
References
- http://secunia.com/advisories/31990
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01556.shtml
- http://www.vupen.com/english/advisories/2008/2670
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6058
- http://secunia.com/advisories/31990
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01556.shtml
- http://www.vupen.com/english/advisories/2008/2670
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6058
Products affected by CVE-2008-2739
-
cpe:2.3:o:cisco:ios:12.3t
-
cpe:2.3:o:cisco:ios:12.3xl
-
cpe:2.3:o:cisco:ios:12.3xq
-
cpe:2.3:o:cisco:ios:12.3xr
-
cpe:2.3:o:cisco:ios:12.3xs
-
cpe:2.3:o:cisco:ios:12.3xx
-
cpe:2.3:o:cisco:ios:12.3ya
-
cpe:2.3:o:cisco:ios:12.3yd
-
cpe:2.3:o:cisco:ios:12.3yg
-
cpe:2.3:o:cisco:ios:12.3yh
-
cpe:2.3:o:cisco:ios:12.3yi
-
cpe:2.3:o:cisco:ios:12.3yk
-
cpe:2.3:o:cisco:ios:12.3ys
-
cpe:2.3:o:cisco:ios:12.3yt
-
cpe:2.3:o:cisco:ios:12.3za
-
cpe:2.3:o:cisco:ios:12.4xa
-
cpe:2.3:o:cisco:ios:12.4xc
-
cpe:2.3:o:cisco:ios:12.4xe
-
cpe:2.3:o:cisco:ios:12.4xf
-
cpe:2.3:o:cisco:ios:12.4xj
-
cpe:2.3:o:cisco:ios:12.4xk
-
cpe:2.3:o:cisco:ios:12.4xt
-
cpe:2.3:o:cisco:ios:12.4xv