CVE-2008-1159 - Vulnerability Details - OpenCVE

Multiple unspecified vulnerabilities in the SSH server in Cisco IOS 12.4 allow remote attackers to cause a denial of service (device restart) via unknown vectors, aka Bug ID (1) CSCsk42419, (2) CSCsk60020, and (3) CSCsh51293.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Cisco	Ios S Ios T Ios Xr

Configuration 1 [-]

OR	cpe:2.3:h:cisco:ios_s:12.4:::::::*
	cpe:2.3:h:cisco:ios_t:12.4:::::::*
	cpe:2.3:h:cisco:ios_xr:12.4:::::::*
	cpe:2.3:o:cisco:ios_xr::::::::

No data.

References

Link	Providers
http://secunia.com/advisories/30322
http://securitytracker.com/id?1020073
http://www.cisco.com/en/US/products/products_security_advisory09186a008099567f.shtml
http://www.securityfocus.com/bid/29314
http://www.vupen.com/english/advisories/2008/1605/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/42563
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5486

History

No history.

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2008-05-22T10:00:00

Updated: 2024-08-07T08:08:57.821Z

Reserved: 2008-03-05T00:00:00

Link: CVE-2008-1159

Vulnrichment

No data.

NVD

Status : Modified

Published: 2008-05-22T13:09:00.000

Modified: 2024-11-21T00:43:49.000

Link: CVE-2008-1159

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-05-21T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in the SSH server in Cisco IOS 12.4 allow remote attackers to cause a denial of service (device restart) via unknown vectors, aka Bug ID (1) CSCsk42419, (2) CSCsk60020, and (3) CSCsh51293."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-28T12:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"name": "20080521 Cisco IOS Secure Shell Denial of Service Vulnerabilities", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a008099567f.shtml"}, {"name": "ADV-2008-1605", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2008/1605/references"}, {"name": "29314", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/29314"}, {"name": "30322", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/30322"}, {"name": "cisco-ios-ssh-multiple-dos(42563)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42563"}, {"name": "1020073", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1020073"}, {"name": "oval:org.mitre.oval:def:5486", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5486"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "ID": "CVE-2008-1159", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple unspecified vulnerabilities in the SSH server in Cisco IOS 12.4 allow remote attackers to cause a denial of service (device restart) via unknown vectors, aka Bug ID (1) CSCsk42419, (2) CSCsk60020, and (3) CSCsh51293."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20080521 Cisco IOS Secure Shell Denial of Service Vulnerabilities", "refsource": "CISCO", "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a008099567f.shtml"}, {"name": "ADV-2008-1605", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/1605/references"}, {"name": "29314", "refsource": "BID", "url": "http://www.securityfocus.com/bid/29314"}, {"name": "30322", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/30322"}, {"name": "cisco-ios-ssh-multiple-dos(42563)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42563"}, {"name": "1020073", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1020073"}, {"name": "oval:org.mitre.oval:def:5486", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5486"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T08:08:57.821Z"}, "title": "CVE Program Container", "references": [{"name": "20080521 Cisco IOS Secure Shell Denial of Service Vulnerabilities", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a008099567f.shtml"}, {"name": "ADV-2008-1605", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2008/1605/references"}, {"name": "29314", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/29314"}, {"name": "30322", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/30322"}, {"name": "cisco-ios-ssh-multiple-dos(42563)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42563"}, {"name": "1020073", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1020073"}, {"name": "oval:org.mitre.oval:def:5486", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5486"}]}]}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2008-1159", "datePublished": "2008-05-22T10:00:00", "dateReserved": "2008-03-05T00:00:00", "dateUpdated": "2024-08-07T08:08:57.821Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:cisco:ios_s:12.4:*:*:*:*:*:*:*", "matchCriteriaId": "A65237AF-ACD9-4AA1-BB2B-97176B19A8C5", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:ios_t:12.4:*:*:*:*:*:*:*", "matchCriteriaId": "B2D41571-3121-4AB2-902F-06DD59423055", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:ios_xr:12.4:*:*:*:*:*:*:*", "matchCriteriaId": "528131B4-B605-47A7-B235-A63EB8E3CF56", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xr:*:*:*:*:*:*:*:*", "matchCriteriaId": "3C15E168-11DA-4219-B689-78BC48935263", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in the SSH server in Cisco IOS 12.4 allow remote attackers to cause a denial of service (device restart) via unknown vectors, aka Bug ID (1) CSCsk42419, (2) CSCsk60020, and (3) CSCsh51293."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades sin especificar en el servidor SSH en Cisco IOS 12.4, permite a atacantes remotos provocar una denegaci\u00f3n de servicio (reinicio de dispositivo) a trav\u00e9s de vectores desconocidos, tambi\u00e9n conocido como Bug ID(1) CSCsk42419, (2) CSCsk60020 y (3) CSCsh51293."}], "id": "CVE-2008-1159", "lastModified": "2024-11-21T00:43:49.000", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2008-05-22T13:09:00.000", "references": [{"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/30322"}, {"source": "ykramarz@cisco.com", "url": "http://securitytracker.com/id?1020073"}, {"source": "ykramarz@cisco.com", "tags": ["Patch"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a008099567f.shtml"}, {"source": "ykramarz@cisco.com", "url": "http://www.securityfocus.com/bid/29314"}, {"source": "ykramarz@cisco.com", "url": "http://www.vupen.com/english/advisories/2008/1605/references"}, {"source": "ykramarz@cisco.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42563"}, {"source": "ykramarz@cisco.com", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5486"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/30322"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1020073"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a008099567f.shtml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/29314"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2008/1605/references"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42563"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5486"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}