Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0536

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2008-0536
Last Modified 17 Mar 2011 12:00:00
Published 22 May 2008 09:09:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0536

Summary

Unspecified vulnerability in the SSH server in (1) Cisco Service Control Engine (SCE) 3.0.x before 3.0.7 and 3.1.x before 3.1.0, and (2) Icon Labs Iconfidant SSH before 2.3.8, allows remote attackers to cause a denial of service (management interface outage) via SSH traffic that occurs during management operations and triggers "illegal I/O operations," aka Bug ID CSCsh49563.

Vulnerable Systems

Application

  • Cisco Service Control Engine 3.0

  • Cisco Service Control Engine 3.1.6

  • Icon-labs Iconfidant Ssh 2.3.7


References

CERT-VN - VU#626979

CISCO - 20080521 Cisco Service Control Engine Denial of Service Vulnerabilities

XF - cisco-sce-managementagent-dos(42566)

VUPEN - ADV-2008-1774

VUPEN - ADV-2008-1604

BID - 29609

BID - 29316

CONFIRM - http://www.icon-labs.com/news/read.asp?newsID=77

SECTRACK - 1020074

SECUNIA - 30590

SECUNIA - 30316


Last Updated: 27 May 2016 10:46:50