CVE-2008-3798: Cisco IOS 12.4 allows remote attackers to cause a denial of service (device crash) via a normal, properly formed SSL packet that occurs during termination of…

CVE-2008-3798 [HIGH] CWE-399 Vulnerability in Cisco IOS While Processing SSL Packet Vulnerability in Cisco IOS While Processing SSL Packet A Cisco IOS device may crash while processing an SSL packet. This can happen during the termination of an SSL-based session. The offending packet is not malformed and is normally received as part of the packet exchange. Cisco has released software updates that address this vulnerability. Aside from disabling affected services, there are no available workarounds to mitigate an exploit of this vulnerability. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20080924-ssl. Note: The September 24, 2008 IOS Advisory bundled publication includes twelve Security Advisories. Eleven of the advisories address vulnerabilities in Cisco's IOS software, and one advisory addresses v

CVE-2008-3798 Vulnerability in Cisco IOS While Processing SSL Packet CVE-2008-3798: Vulnerability in Cisco IOS While Processing SSL Packet A Cisco IOS device may crash while processing an SSL packet. This can happen during the termination of an SSL-based session. The offending packet is not malformed and is normally received as part of the packet exchange. Cisco has released software updates that address this vulnerability. Aside from disabling affected services, there are no available CWE: CWE-399, CWE-399 Bug IDs: CSCsj85065, CSCsj85065

CVE-2008-3798 [HIGH] GHSA-rjpg-gjcq-25gr: Cisco IOS 12 Cisco IOS 12.4 allows remote attackers to cause a denial of service (device crash) via a normal, properly formed SSL packet that occurs during termination of an SSL session.