7.8

CVE-2008-0536

EPSS 2.67%
Veröffentlicht 22.05.2008 13:09:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle psirt@cisco.com
CVE-Watchlists
Login
Unerledigt
Login

Unspecified vulnerability in the SSH server in (1) Cisco Service Control Engine (SCE) 3.0.x before 3.0.7 and 3.1.x before 3.1.0, and (2) Icon Labs Iconfidant SSH before 2.3.8, allows remote attackers to cause a denial of service (management interface outage) via SSH traffic that occurs during management operations and triggers "illegal I/O operations," aka Bug ID CSCsh49563.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 14

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Cisco ≫ Service Control Engine Version <= 3.1.6

Cisco ≫ Service Control Engine Version3.0

Icon-labs ≫ Iconfidant Ssh Version <= 2.3.7

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.67%	0.852

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

http://secunia.com/advisories/30316

Vendor Advisory

http://secunia.com/advisories/30590

Vendor Advisory

http://securitytracker.com/id?1020074

http://www.cisco.com/en/US/products/products_security_advisory09186a008099bf65.shtml

Patch

http://www.icon-labs.com/news/read.asp?newsID=77

http://www.kb.cert.org/vuls/id/626979

US Government Resource

http://www.securityfocus.com/bid/29316

http://www.securityfocus.com/bid/29609

http://www.vupen.com/english/advisories/2008/1604/references

Vendor Advisory

http://www.vupen.com/english/advisories/2008/1774/references

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/42566

https://nvd.nist.gov/vuln/detail/CVE-2008-0536

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-0536

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-0536

EUVD