CVE-2008-2060

high

Description

Unspecified vulnerability in Cisco Intrusion Prevention System (IPS) 5.x before 5.1(8)E2 and 6.x before 6.0(5)E2, when inline mode and jumbo Ethernet support are enabled, allows remote attackers to cause a denial of service (panic), and possibly bypass intended restrictions on network traffic, via a "specific series of jumbo Ethernet frames."

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/43166

http://www.vupen.com/english/advisories/2008/1872/references

http://www.securitytracker.com/id?1020326

http://www.securityfocus.com/bid/29791

http://www.cisco.com/en/US/products/products_security_advisory09186a00809b3842.shtml

http://secunia.com/advisories/30767

Details

Source: Mitre, NVD

Published: 2008-06-18

Updated: 2017-08-08

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:C

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High