Cisco IOS 12.0 through 12.4 on Cisco 10000, uBR10012 and uBR7200 series devices handles external UDP packets that are sent to 127.0.0.0/8 addresses intended for IPC communication within the device, which allows remote attackers to cause a denial of service (device or linecard reload) via crafted UDP packets, a different vulnerability than CVE-2008-3806.
References
Link | Resource |
---|---|
http://secunia.com/advisories/31990 | Third Party Advisory |
http://tools.cisco.com/security/center/viewAlert.x?alertId=16646 | Vendor Advisory |
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a014ae.shtml | Vendor Advisory |
http://www.securitytracker.com/id?1020935 | Broken Link Third Party Advisory VDB Entry |
http://www.vupen.com/english/advisories/2008/2670 | Permissions Required |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5910 | Broken Link |
Configurations
Configuration 1 (hide)
|
History
02 Jun 2022, 17:17
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:h:cisco:ios:12.2ca:*:*:*:*:*:*:* cpe:2.3:h:cisco:ios:12.2rc:*:*:*:*:*:*:* cpe:2.3:h:cisco:ios:12.2zx:*:*:*:*:*:*:* cpe:2.3:h:cisco:ios:12.4:*:*:*:*:*:*:* cpe:2.3:h:cisco:ios:12.3bc:*:*:*:*:*:*:* cpe:2.3:h:cisco:ios:12.2s:*:*:*:*:*:*:* cpe:2.3:h:cisco:ios:12.2t:*:*:*:*:*:*:* cpe:2.3:h:cisco:ios:12.2b:*:*:*:*:*:*:* cpe:2.3:h:cisco:ios:12.3xi:*:*:*:*:*:*:* cpe:2.3:h:cisco:ios:12.2l:*:*:*:*:*:*:* |
cpe:2.3:o:cisco:ios:12.2ca:*:*:*:*:*:*:* cpe:2.3:o:cisco:ios:12.2s:*:*:*:*:*:*:* cpe:2.3:o:cisco:ios:12.3t:*:*:*:*:*:*:* cpe:2.3:o:cisco:ios:12.3xi:*:*:*:*:*:*:* cpe:2.3:o:cisco:ios:12.2b:*:*:*:*:*:*:* cpe:2.3:o:cisco:ios:12.2l:*:*:*:*:*:*:* cpe:2.3:o:cisco:ios:12.4:*:*:*:*:*:*:* cpe:2.3:o:cisco:ios:12.2rc:*:*:*:*:*:*:* cpe:2.3:o:cisco:ios:12.3bc:*:*:*:*:*:*:* cpe:2.3:o:cisco:ios:12.2zx:*:*:*:*:*:*:* cpe:2.3:o:cisco:ios:12.2t:*:*:*:*:*:*:* |
References | (SECTRACK) http://www.securitytracker.com/id?1020935 - Broken Link, Third Party Advisory, VDB Entry | |
References | (OVAL) https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5910 - Broken Link | |
References | (CONFIRM) http://tools.cisco.com/security/center/viewAlert.x?alertId=16646 - Vendor Advisory | |
References | (SECUNIA) http://secunia.com/advisories/31990 - Third Party Advisory | |
References | (CISCO) http://www.cisco.com/en/US/products/products_security_advisory09186a0080a014ae.shtml - Vendor Advisory | |
References | (VUPEN) http://www.vupen.com/english/advisories/2008/2670 - Permissions Required | |
CWE | NVD-CWE-noinfo |
Information
Published : 2008-09-26 16:21
Updated : 2023-12-10 10:51
NVD link : CVE-2008-3805
Mitre link : CVE-2008-3805
CVE.ORG link : CVE-2008-3805
JSON object : View
Products Affected
cisco
- ios
CWE