Vulnerabilities > CVE-2008-3806 - Unspecified vulnerability in Cisco IOS

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
cisco
nessus
NVD
Published: 2008-09-26
Updated: 2024-11-21

Summary

Cisco IOS 12.0 through 12.4 on Cisco 10000, uBR10012 and uBR7200 series devices handles external UDP packets that are sent to 127.0.0.0/8 addresses intended for IPC communication within the device, which allows remote attackers to cause a denial of service (device or linecard reload) via crafted UDP packets, a different vulnerability than CVE-2008-3805.

Vulnerable Configurations

Part Description Count
OS
Cisco
11

Nessus

NASL familyCISCO
NASL idCISCO-SA-20080924-IPCHTTP.NASL
descriptionCisco 10000, uBR10012 and uBR7200 series devices use a User Datagram Protocol (UDP) based Inter-Process Communication (IPC) channel that is externally reachable. An attacker could exploit this vulnerability to cause a denial of service (DoS) condition on affected devices. No other platforms are affected. Cisco has released free software updates that address this vulnerability. Workarounds that mitigate this vulnerability are available.
last seen2020-06-01
modified2020-06-02
plugin id49020
published2010-09-01
reporterThis script is (C) 2010-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/49020
titleCisco 10000, uBR10012, uBR7200 Series Devices IPC Vulnerability - Cisco Systems

Oval

accepted2010-06-28T04:00:11.844-04:00
classvulnerability
contributors
nameKashif Latif
organizationDTCC
descriptionCisco IOS 12.0 through 12.4 on Cisco 10000, uBR10012 and uBR7200 series devices handles external UDP packets that are sent to 127.0.0.0/8 addresses intended for IPC communication within the device, which allows remote attackers to cause a denial of service (device or linecard reload) via crafted UDP packets, a different vulnerability than CVE-2008-3805.
familyios
idoval:org.mitre.oval:def:7123
statusaccepted
submitted2010-04-30T11:06:36.000-04:00
titleCisco 10000, uBR10012, uBR7200 Series Devices IPC Vulnerability
version7

References