Memory leak in the Session Initiation Protocol (SIP) implementation in Cisco IOS 12.2 through 12.4, when VoIP is configured, allows remote attackers to cause a denial of service (memory consumption and voice-service outage) via unspecified valid SIP messages.
References
| Link | Resource |
|---|---|
| http://secunia.com/advisories/31990 | Third Party Advisory |
| http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01562.shtml | Vendor Advisory |
| http://www.securitytracker.com/id?1020939 | Broken Link Third Party Advisory VDB Entry |
| http://www.vupen.com/english/advisories/2008/2670 | Permissions Required |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5927 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
02 Jun 2022, 17:10
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:h:cisco:ios:12.3:*:*:*:*:*:*:* cpe:2.3:h:cisco:ios:12.2:*:*:*:*:*:*:* |
cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:* cpe:2.3:o:cisco:ios:12.3:*:*:*:*:*:*:* cpe:2.3:o:cisco:ios:12.4:*:*:*:*:*:*:* |
| CWE | CWE-772 | |
| References | (SECTRACK) http://www.securitytracker.com/id?1020939 - Broken Link, Third Party Advisory, VDB Entry | |
| References | (OVAL) https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5927 - Third Party Advisory | |
| References | (CISCO) http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01562.shtml - Vendor Advisory | |
| References | (SECUNIA) http://secunia.com/advisories/31990 - Third Party Advisory | |
| References | (VUPEN) http://www.vupen.com/english/advisories/2008/2670 - Permissions Required |
Information
Published : 2008-09-26 16:21
Updated : 2023-12-10 10:51
NVD link : CVE-2008-3799
Mitre link : CVE-2008-3799
CVE.ORG link : CVE-2008-3799
JSON object : View
Products Affected
cisco
- ios
CWE
CWE-772
Missing Release of Resource after Effective Lifetime