Vulnerability Details CVE-2008-3811
Cisco IOS 12.2 and 12.4, when NAT Skinny Call Control Protocol (SCCP) Fragmentation Support is enabled, allows remote attackers to cause a denial of service (device reload) via segmented SCCP messages, aka Cisco Bug ID CSCsi17020, a different vulnerability than CVE-2008-3810.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.019
EPSS Ranking 82.6%
CVSS Severity
CVSS v2 Score 7.8
References
- http://secunia.com/advisories/31990
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a0148e.shtml
- http://www.securityfocus.com/bid/31359
- http://www.securitytracker.com/id?1020937
- http://www.vupen.com/english/advisories/2008/2670
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45535
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5900
- http://secunia.com/advisories/31990
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a0148e.shtml
- http://www.securityfocus.com/bid/31359
- http://www.securitytracker.com/id?1020937
- http://www.vupen.com/english/advisories/2008/2670
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45535
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5900
Products affected by CVE-2008-3811
-
cpe:2.3:o:cisco:ios:12.4md
-
cpe:2.3:o:cisco:ios:12.4mr
-
cpe:2.3:o:cisco:ios:12.4sw
-
cpe:2.3:o:cisco:ios:12.4t
-
cpe:2.3:o:cisco:ios:12.4xc
-
cpe:2.3:o:cisco:ios:12.4xe
-
cpe:2.3:o:cisco:ios:12.4xf
-
cpe:2.3:o:cisco:ios:12.4xg
-
cpe:2.3:o:cisco:ios:12.4xj
-
cpe:2.3:o:cisco:ios:12.4xk
-
cpe:2.3:o:cisco:ios:12.4xl
-
cpe:2.3:o:cisco:ios:12.4xm
-
cpe:2.3:o:cisco:ios:12.4xn
-
cpe:2.3:o:cisco:ios:12.4xp
-
cpe:2.3:o:cisco:ios:12.4xt
-
cpe:2.3:o:cisco:ios:12.4xv
-
cpe:2.3:o:cisco:ios:12.4xw