CVE-2008-2739

The SERVICE.DNS signature engine in the Intrusion Prevention System (IPS) in Cisco IOS 12.3 and 12.4 allows remote attackers to cause a denial of service (device crash or hang) via network traffic that triggers unspecified IPS signatures, a different vulnerability than CVE-2008-1447.

Published: Sep 26, 2008
Updated: Apr 13, 2023
CVE: CVE-2008-2739
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
cisco / ios	12.3xr	12.3xr.x
cisco / ios	12.3ya	12.3ya.x
cisco / ios	12.3xs	12.3xs.x
cisco / ios	12.4xj	12.4xj.x
cisco / ios	12.4xt	12.4xt.x
cisco / ios	12.3t	12.3t.x
cisco / ios	12.4xf	12.4xf.x
cisco / ios	12.4xv	12.4xv.x
cisco / ios	12.3yd	12.3yd.x
cisco / ios	12.3xl	12.3xl.x
cisco / ios	12.3yk	12.3yk.x
cisco / ios	12.3yt	12.3yt.x
cisco / ios	12.4xk	12.4xk.x
cisco / ios	12.3yg	12.3yg.x
cisco / ios	12.4xa	12.4xa.x
cisco / ios	12.3za	12.3za.x
cisco / ios	12.4xe	12.4xe.x
cisco / ios	12.3xq	12.3xq.x
cisco / ios	12.3ys	12.3ys.x
cisco / ios	12.3yh	12.3yh.x
cisco / ios	12.3xx	12.3xx.x
cisco / ios	12.4xc	12.4xc.x
cisco / ios	12.3yi	12.3yi.x

Vulnerability Database

290,206

CVE-2008-2739