ID CVE-2008-2739
Summary The SERVICE.DNS signature engine in the Intrusion Prevention System (IPS) in Cisco IOS 12.3 and 12.4 allows remote attackers to cause a denial of service (device crash or hang) via network traffic that triggers unspecified IPS signatures, a different vulnerability than CVE-2008-1447.
References
Vulnerable Configurations
  • cpe:2.3:h:cisco:ios:12.3t
    cpe:2.3:h:cisco:ios:12.3t
  • cpe:2.3:h:cisco:ios:12.3xl
    cpe:2.3:h:cisco:ios:12.3xl
  • cpe:2.3:h:cisco:ios:12.3xq
    cpe:2.3:h:cisco:ios:12.3xq
  • cpe:2.3:h:cisco:ios:12.3xr
    cpe:2.3:h:cisco:ios:12.3xr
  • cpe:2.3:h:cisco:ios:12.3xs
    cpe:2.3:h:cisco:ios:12.3xs
  • cpe:2.3:h:cisco:ios:12.3xx
    cpe:2.3:h:cisco:ios:12.3xx
  • cpe:2.3:h:cisco:ios:12.3ya
    cpe:2.3:h:cisco:ios:12.3ya
  • cpe:2.3:h:cisco:ios:12.3yd
    cpe:2.3:h:cisco:ios:12.3yd
  • cpe:2.3:h:cisco:ios:12.3yg
    cpe:2.3:h:cisco:ios:12.3yg
  • cpe:2.3:h:cisco:ios:12.3yh
    cpe:2.3:h:cisco:ios:12.3yh
  • cpe:2.3:h:cisco:ios:12.3yk
    cpe:2.3:h:cisco:ios:12.3yk
  • cpe:2.3:h:cisco:ios:12.3ys
    cpe:2.3:h:cisco:ios:12.3ys
  • cpe:2.3:h:cisco:ios:12.3yt
    cpe:2.3:h:cisco:ios:12.3yt
  • cpe:2.3:h:cisco:ios:12.3za
    cpe:2.3:h:cisco:ios:12.3za
  • cpe:2.3:h:cisco:ios:12.4xa
    cpe:2.3:h:cisco:ios:12.4xa
  • cpe:2.3:h:cisco:ios:12.4xc
    cpe:2.3:h:cisco:ios:12.4xc
  • cpe:2.3:h:cisco:ios:12.4xe
    cpe:2.3:h:cisco:ios:12.4xe
  • cpe:2.3:h:cisco:ios:12.4xj
    cpe:2.3:h:cisco:ios:12.4xj
  • cpe:2.3:h:cisco:ios:12.4xk
    cpe:2.3:h:cisco:ios:12.4xk
  • cpe:2.3:h:cisco:ios:12.4xt
    cpe:2.3:h:cisco:ios:12.4xt
  • cpe:2.3:h:cisco:ios:12.4xv
    cpe:2.3:h:cisco:ios:12.4xv
  • Cisco IOS 12.3YI
    cpe:2.3:o:cisco:ios:12.3yi
  • Cisco IOS 12.4XF
    cpe:2.3:o:cisco:ios:12.4xf
CVSS
Base: 7.8 (as of 29-09-2008 - 08:44)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
nessus via4
NASL family CISCO
NASL id CISCO-SA-20080924-IOSIPSHTTP.NASL
description The Cisco IOS Intrusion Prevention System (IPS) feature contains a vulnerability in the processing of certain IPS signatures that use the SERVICE.DNS engine. This vulnerability may cause a router to crash or hang, resulting in a denial of service condition. Cisco has released free software updates that address this vulnerability. There is a workaround for this vulnerability. Note: This vulnerability is not related in any way to CVE-2008-1447 - Cache poisoning attacks.
last seen 2019-02-21
modified 2018-11-15
plugin id 49019
published 2010-09-01
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=49019
title Cisco IOS IPS Denial of Service Vulnerability - Cisco Systems
oval via4
accepted 2010-06-21T04:00:02.096-04:00
class vulnerability
contributors
  • name Yuzheng Zhou
    organization Hewlett-Packard
  • name KASHIF LATIF
    organization DTCC
description The SERVICE.DNS signature engine in the Intrusion Prevention System (IPS) in Cisco IOS 12.3 and 12.4 allows remote attackers to cause a denial of service (device crash or hang) via network traffic that triggers unspecified IPS signatures, a different vulnerability than CVE-2008-1447.
family ios
id oval:org.mitre.oval:def:6058
status accepted
submitted 2008-09-24T11:06:36.000-04:00
title Cisco IOS IPS Denial of Service Vulnerability
version 7
refmap via4
cisco 20080924 Cisco IOS IPS Denial of Service Vulnerability
secunia 31990
vupen ADV-2008-2670
Last major update 07-03-2011 - 22:09
Published 26-09-2008 - 12:21
Last modified 30-10-2018 - 12:25
Back to Top