Vulnerability Description
Cisco IOS 12.0 through 12.4 on Cisco 10000, uBR10012 and uBR7200 series devices handles external UDP packets that are sent to 127.0.0.0/8 addresses intended for IPC communication within the device, which allows remote attackers to cause a denial of service (device or linecard reload) via crafted UDP packets, a different vulnerability than CVE-2008-3805.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios | 12.0s |
References
- http://secunia.com/advisories/31990Third Party Advisory
- http://tools.cisco.com/security/center/viewAlert.x?alertId=16646Vendor Advisory
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a014ae.sVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45592Third Party AdvisoryVDB Entry
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Third Party Advisory
- http://secunia.com/advisories/31990Third Party Advisory
- http://tools.cisco.com/security/center/viewAlert.x?alertId=16646Vendor Advisory
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a014ae.sVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45592Third Party AdvisoryVDB Entry
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Third Party Advisory
FAQ
What is CVE-2008-3806?
CVE-2008-3806 is a vulnerability with a CVSS score of 8.5 (HIGH). Cisco IOS 12.0 through 12.4 on Cisco 10000, uBR10012 and uBR7200 series devices handles external UDP packets that are sent to 127.0.0.0/8 addresses intended for IPC communication within the device, wh...
How severe is CVE-2008-3806?
CVE-2008-3806 has been rated HIGH with a CVSS base score of 8.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-3806?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios.