Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3800

Overview

Vulnerability Score 7.1 7.1
CVE Id CVE-2008-3800
Last Modified 29 Oct 2012 11:15:44
Published 26 Sep 2008 12:21:44
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-3800

Summary

Unspecified vulnerability in the Session Initiation Protocol (SIP) implementation in Cisco IOS 12.2 through 12.4 and Unified Communications Manager 4.1 through 6.1, when VoIP is configured, allows remote attackers to cause a denial of service (device or process reload) via unspecified valid SIP messages, aka Cisco Bug ID CSCsu38644, a different vulnerability than CVE-2008-3801 and CVE-2008-3802.

Vulnerable Systems

Application

  • Cisco Unified Callmanager 4.1

  • Cisco Unified Callmanager 4.2

  • Cisco Unified Callmanager 4.3

  • Cisco Unified Communications Manager 4.1

  • Cisco Unified Communications Manager 5.0

  • Cisco Unified Communications Manager 5.1

  • Cisco Unified Communications Manager 6.1


References

CISCO - 20080924 Cisco Unified Communications Manager Session Initiation Protocol Denial of Service Vulnerabilities

CISCO - 20080924 Multiple Cisco IOS Session Initiation Protocol Denial of Service Vulnerabilities

VUPEN - ADV-2008-2671

VUPEN - ADV-2008-2670

BID - 31367

SECUNIA - 32013

SECUNIA - 31990

SECTRACK - 1020942

SECTRACK - 1020939


Last Updated: 27 May 2016 11:01:18