CVE-2008-2092

Linksys SPA-2102 Phone Adapter 3.3.6 allows remote attackers to cause a denial of service (crash) via a long ping packet ("ping of death"). NOTE: the severity of this issue has been disputed since there are limited attack scenarios.

Published: May 6, 2008
Updated: Apr 13, 2023
CVE: CVE-2008-2092
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-399

Affected Software
References

Software	From	Fixed in
linksys / spa-2102_phone_adapter	3.3.6	3.3.6.x

http://marc.info/?l=bugtraq&m=120637257800425&w=2
http://marc.info/?l=bugtraq&m=120637551306325&w=2
http://marc.info/?l=bugtraq&m=120638162819268&w=2
http://marc.info/?l=bugtraq&m=120638296821936&w=2
http://marc.info/?l=bugtraq&m=120645736414059&w=2
http://secunia.com/advisories/29523
http://www.securityfocus.com/bid/28414
https://exchange.xforce.ibmcloud.com/vulnerabilities/41436

Vulnerability Database

CVE-2008-2092