CVE-2008-3802
First published: Fri Sep 26 2008(Updated: )
Unspecified vulnerability in the Session Initiation Protocol (SIP) implementation in Cisco IOS 12.2 through 12.4, when VoIP is configured, allows remote attackers to cause a denial of service (device reload) via unspecified valid SIP messages, aka Cisco bug ID CSCsk42759, a different vulnerability than CVE-2008-3800 and CVE-2008-3801.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Puppet Cisco IOS | =12.2b | |
| Puppet Cisco IOS | =12.2bx | |
| Puppet Cisco IOS | =12.2by | |
| Puppet Cisco IOS | =12.2cz | |
| Puppet Cisco IOS | =12.2mc | |
| Puppet Cisco IOS | =12.2t | |
| Puppet Cisco IOS | =12.2tpc | |
| Puppet Cisco IOS | =12.2xb | |
| Puppet Cisco IOS | =12.2xm | |
| Puppet Cisco IOS | =12.2xt | |
| Puppet Cisco IOS | =12.2xu | |
| Puppet Cisco IOS | =12.2xw | |
| Puppet Cisco IOS | =12.2ya | |
| Puppet Cisco IOS | =12.2yb | |
| Puppet Cisco IOS | =12.2yc | |
| Puppet Cisco IOS | =12.2yd | |
| Puppet Cisco IOS | =12.2yf | |
| Puppet Cisco IOS | =12.2yh | |
| Puppet Cisco IOS | =12.2yj | |
| Puppet Cisco IOS | =12.2yl | |
| Puppet Cisco IOS | =12.2ym | |
| Puppet Cisco IOS | =12.2yn | |
| Puppet Cisco IOS | =12.2yt | |
| Puppet Cisco IOS | =12.2yu | |
| Puppet Cisco IOS | =12.2yv | |
| Puppet Cisco IOS | =12.2yw | |
| Puppet Cisco IOS | =12.2yy | |
| Puppet Cisco IOS | =12.2zb | |
| Puppet Cisco IOS | =12.2zc | |
| Puppet Cisco IOS | =12.2zd | |
| Puppet Cisco IOS | =12.2ze | |
| Puppet Cisco IOS | =12.2zf | |
| Puppet Cisco IOS | =12.2zh | |
| Puppet Cisco IOS | =12.2zj | |
| Puppet Cisco IOS | =12.2zl | |
| Puppet Cisco IOS | =12.2zp | |
| Puppet Cisco IOS | =12.3 | |
| Puppet Cisco IOS | =12.3b | |
| Puppet Cisco IOS | =12.3t | |
| Puppet Cisco IOS | =12.3tpc | |
| Puppet Cisco IOS | =12.3va | |
| Puppet Cisco IOS | =12.3xa | |
| Puppet Cisco IOS | =12.3xb | |
| Puppet Cisco IOS | =12.3xc | |
| Puppet Cisco IOS | =12.3xd | |
| Puppet Cisco IOS | =12.3xe | |
| Puppet Cisco IOS | =12.3xf | |
| Puppet Cisco IOS | =12.3xg | |
| Puppet Cisco IOS | =12.3xi | |
| Puppet Cisco IOS | =12.3xj | |
| Puppet Cisco IOS | =12.3xk | |
| Puppet Cisco IOS | =12.3xl | |
| Puppet Cisco IOS | =12.3xq | |
| Puppet Cisco IOS | =12.3xr | |
| Puppet Cisco IOS | =12.3xu | |
| Puppet Cisco IOS | =12.3xw | |
| Puppet Cisco IOS | =12.3xx | |
| Puppet Cisco IOS | =12.3xy | |
| Puppet Cisco IOS | =12.3xz | |
| Puppet Cisco IOS | =12.3yf | |
| Puppet Cisco IOS | =12.3yg | |
| Puppet Cisco IOS | =12.3yk | |
| Puppet Cisco IOS | =12.3ym | |
| Puppet Cisco IOS | =12.3yq | |
| Puppet Cisco IOS | =12.3ys | |
| Puppet Cisco IOS | =12.3yt | |
| Puppet Cisco IOS | =12.3yu | |
| Puppet Cisco IOS | =12.3yx | |
| Puppet Cisco IOS | =12.3yz | |
| Puppet Cisco IOS | =12.3za | |
| Puppet Cisco IOS | =12.4 | |
| Puppet Cisco IOS | =12.4mr | |
| Puppet Cisco IOS | =12.4t | |
| Puppet Cisco IOS | =12.4xa | |
| Puppet Cisco IOS | =12.4xb | |
| Puppet Cisco IOS | =12.4xc | |
| Puppet Cisco IOS | =12.4xd | |
| Puppet Cisco IOS | =12.4xe | |
| Puppet Cisco IOS | =12.4xj | |
| Puppet Cisco IOS | =12.4xl | |
| Puppet Cisco IOS | =12.4xp | |
| Puppet Cisco IOS | =12.4xt | |
| Puppet Cisco IOS | =12.4xv | |
| Puppet Cisco IOS | =12.4xw | |
| Puppet Cisco IOS | =12.4xy |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01562.shtml
- http://secunia.com/advisories/31990
- http://www.vupen.com/english/advisories/2008/2670
- http://www.securitytracker.com/id?1020939
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5889
Frequently Asked Questions
What is the severity of CVE-2008-3802?
CVE-2008-3802 is classified as a high-severity vulnerability due to its potential to cause a denial of service.
How do I fix CVE-2008-3802?
To fix CVE-2008-3802, upgrade your Cisco IOS to a version that is not affected by this vulnerability.
What systems are affected by CVE-2008-3802?
CVE-2008-3802 affects multiple versions of Cisco IOS, specifically versions 12.2 through 12.4, when VoIP is configured.
Can CVE-2008-3802 allow remote attacks?
Yes, CVE-2008-3802 allows remote attackers to send valid SIP messages that can trigger a device reload.
What type of attack does CVE-2008-3802 facilitate?
CVE-2008-3802 facilitates denial of service attacks on devices running vulnerable versions of Cisco IOS.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/severity
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/cisco
- canonical/cisco ios
- version/cisco ios/12.3ym
- version/cisco ios/12.3yq
- version/cisco ios/12.3xr
- version/cisco ios/12.4t
- version/cisco ios/12.2cz
- version/cisco ios/12.3xg
- version/cisco ios/12.4xj
- version/cisco ios/12.2zp
- version/cisco ios/12.3xd
- version/cisco ios/12.4xl
- version/cisco ios/12.3xw
- version/cisco ios/12.4mr
- version/cisco ios/12.2b
- version/cisco ios/12.4xt
- version/cisco ios/12.3xi
- version/cisco ios/12.2yn
- version/cisco ios/12.2xb
- version/cisco ios/12.2yf
- version/cisco ios/12.2ym
- version/cisco ios/12.2yw
- version/cisco ios/12.3yu
- version/cisco ios/12.2yd
- version/cisco ios/12.3xj
- version/cisco ios/12.3t
- version/cisco ios/12.2yb
- version/cisco ios/12.3
- version/cisco ios/12.2zh
- version/cisco ios/12.2yv
- version/cisco ios/12.2xw
- version/cisco ios/12.3va
- version/cisco ios/12.2t
- version/cisco ios/12.2zc
- version/cisco ios/12.3xz
- version/cisco ios/12.2yt
- version/cisco ios/12.2yl
- version/cisco ios/12.4xv
- version/cisco ios/12.4xw
- version/cisco ios/12.2zb
- version/cisco ios/12.2xu
- version/cisco ios/12.3xf
- version/cisco ios/12.3xl
- version/cisco ios/12.3yk
- version/cisco ios/12.3yf
- version/cisco ios/12.4xd
- version/cisco ios/12.4xp
- version/cisco ios/12.2xm
- version/cisco ios/12.3yt
- version/cisco ios/12.3xb
- version/cisco ios/12.2zj
- version/cisco ios/12.3yz
- version/cisco ios/12.3yg
- version/cisco ios/12.3xu
- version/cisco ios/12.2zd
- version/cisco ios/12.3xy
- version/cisco ios/12.3xc
- version/cisco ios/12.4
- version/cisco ios/12.2tpc
- version/cisco ios/12.3xe
- version/cisco ios/12.2yc
- version/cisco ios/12.2ze
- version/cisco ios/12.3tpc
- version/cisco ios/12.4xa
- version/cisco ios/12.2yy
- version/cisco ios/12.3za
- version/cisco ios/12.2yu
- version/cisco ios/12.4xe
- version/cisco ios/12.3yx
- version/cisco ios/12.2bx
- version/cisco ios/12.3xq
- version/cisco ios/12.2zl
- version/cisco ios/12.3ys
- version/cisco ios/12.2zf
- version/cisco ios/12.3b
- version/cisco ios/12.2ya
- version/cisco ios/12.4xb
- version/cisco ios/12.3xx
- version/cisco ios/12.4xy
- version/cisco ios/12.4xc
- version/cisco ios/12.3xa
- version/cisco ios/12.3xk
- version/cisco ios/12.2yj
- version/cisco ios/12.2mc
- version/cisco ios/12.2by
- version/cisco ios/12.2yh
- version/cisco ios/12.2xt