CVE-2008-0536

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2008-0536
Unspecified vulnerability in the SSH server in (1) Cisco Service Control Engine (SCE) 3.0.x before 3.0.7 and 3.1.x before 3.1.0, and (2) Icon Labs Iconfidant SSH before 2.3.8, allows remote attackers to cause a denial of service (management interface outage) via SSH traffic that occurs during management operations and triggers "illegal I/O operations," aka Bug ID CSCsh49563.

7.8 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 10.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References
Link Resource
http://secunia.com/advisories/30316 Vendor Advisory
http://secunia.com/advisories/30590 Vendor Advisory
http://securitytracker.com/id?1020074
http://www.cisco.com/en/US/products/products_security_advisory09186a008099bf65.shtml Patch
http://www.icon-labs.com/news/read.asp?newsID=77
http://www.kb.cert.org/vuls/id/626979 US Government Resource
http://www.securityfocus.com/bid/29316
http://www.securityfocus.com/bid/29609
http://www.vupen.com/english/advisories/2008/1604/references Vendor Advisory
http://www.vupen.com/english/advisories/2008/1774/references Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/42566
http://secunia.com/advisories/30316 Vendor Advisory
http://secunia.com/advisories/30590 Vendor Advisory
http://securitytracker.com/id?1020074
http://www.cisco.com/en/US/products/products_security_advisory09186a008099bf65.shtml Patch
http://www.icon-labs.com/news/read.asp?newsID=77
http://www.kb.cert.org/vuls/id/626979 US Government Resource
http://www.securityfocus.com/bid/29316
http://www.securityfocus.com/bid/29609
http://www.vupen.com/english/advisories/2008/1604/references Vendor Advisory
http://www.vupen.com/english/advisories/2008/1774/references Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/42566
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:cisco:service_control_engine:*:*:*:*:*:*:*:*
cpe:2.3:a:cisco:service_control_engine:3.0:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:icon-labs:iconfidant_ssh:*:*:*:*:*:*:*:*
History

No history.

Information

Published : 2008-05-22 13:09

Updated : 2025-04-09 00:30

NVD link : CVE-2008-0536

Mitre link : CVE-2008-0536

CVE.ORG link : CVE-2008-0536

JSON object : View

Products Affected

icon-labs

  • iconfidant_ssh

cisco

  • service_control_engine
CWE
CWE-287

Improper Authentication