CVE-2008-3810
published 2008-09-26CVE-2008-3810: Cisco IOS 12.2 and 12.4, when NAT Skinny Call Control Protocol (SCCP) Fragmentation Support is enabled, allows remote attackers to cause a denial of service…
high7.8CVSS 3.1
AVNACLAuNCNINAC
Cisco IOS 12.2 and 12.4, when NAT Skinny Call Control Protocol (SCCP) Fragmentation Support is enabled, allows remote attackers to cause a denial of service (device reload) via segmented SCCP messages, aka CSCsg22426, a different vulnerability than CVE-2008-3811.
Affected
18 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios_nat_skinny_call_control_protocol | — | — |
GHSA
GHSA-cgmg-28mj-xfpc: Cisco IOS 12
ghsa_unreviewed·2022-05-02·CVSS 7.8
CVE-2008-3811 [HIGH] CWE-20 GHSA-cgmg-28mj-xfpc: Cisco IOS 12
Cisco IOS 12.2 and 12.4, when NAT Skinny Call Control Protocol (SCCP) Fragmentation Support is enabled, allows remote attackers to cause a denial of service (device reload) via segmented SCCP messages, aka Cisco Bug ID CSCsi17020, a different vulnerability than CVE-2008-3810.
GHSA
GHSA-q6pw-h64c-4qqr: Cisco IOS 12
ghsa_unreviewed·2022-05-02·CVSS 7.8
CVE-2008-3810 [HIGH] CWE-20 GHSA-q6pw-h64c-4qqr: Cisco IOS 12
Cisco IOS 12.2 and 12.4, when NAT Skinny Call Control Protocol (SCCP) Fragmentation Support is enabled, allows remote attackers to cause a denial of service (device reload) via segmented SCCP messages, aka CSCsg22426, a different vulnerability than CVE-2008-3811.
Cisco
Cisco IOS NAT Skinny Call Control Protocol Vulnerability
vendor_cisco·2008-09-24·CVSS 7.8
CVE-2008-3810 [HIGH] CWE-399 Cisco IOS NAT Skinny Call Control Protocol Vulnerability
Cisco IOS NAT Skinny Call Control Protocol Vulnerability
A series of segmented Skinny Call Control Protocol (SCCP) messages may
cause a Cisco IOS device that is configured with the Network Address
Translation (NAT) SCCP Fragmentation Support feature to reload.
Cisco has released software updates that address this vulnerability. A workaround that mitigates this vulnerability is
available.
This advisory is posted at
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20080924-sccp.
Note: The September 24, 2008 IOS Advisory bundled publication includes
twelve Security Advisories. Eleven of the advisories address vulnerabilities in
Cisco's IOS software, and one advisory addresses vulnerabilities in Cisco
Unified Communications Manager. Each Advisory lis
Cisco
Cisco IOS NAT Skinny Call Control Protocol Vulnerability
vendor_cisco
CVE-2008-3810 Cisco IOS NAT Skinny Call Control Protocol Vulnerability
CVE-2008-3810: Cisco IOS NAT Skinny Call Control Protocol Vulnerability
A series of segmented Skinny Call Control Protocol (SCCP) messages may cause a Cisco IOS device that is configured with the Network Address Translation (NAT) SCCP Fragmentation Support feature to reload. Cisco has released software updates that address this vulnerability. A workaround that mitigates this vulnerability is available. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20080924-sccp . Note: The September 24, 2008 IOS Advisory bundled publication includes twelve Security Advisories. Eleven of the advisories address vulnerabilities in Cisco's IOS software, and one advisory addresses vulnerabilities in Cisco Unified Communications Manager. Each Ad
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://secunia.com/advisories/31990http://www.cisco.com/en/US/products/products_security_advisory09186a0080a0148e.shtmlhttp://www.securityfocus.com/bid/31359http://www.securitytracker.com/id?1020937http://www.vupen.com/english/advisories/2008/2670https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6112http://secunia.com/advisories/31990http://www.cisco.com/en/US/products/products_security_advisory09186a0080a0148e.shtmlhttp://www.securityfocus.com/bid/31359http://www.securitytracker.com/id?1020937http://www.vupen.com/english/advisories/2008/2670https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6112
2008-09-26
Published