CVE-2008-2739

Name: CVE-2008-2739
Creator: NVD / NIST
Published: 2008-09-26T16:21:43.957+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 2.68%

Last modified Jun 16, 2026

CVE-2008-2739 is a vulnerability of currently unknown severity. The SERVICE.DNS signature engine in the Intrusion Prevention System (IPS) in Cisco IOS 12.3 and 12.4 allows remote attackers to cause a denial of service (device crash or hang) via network traffic that triggers unspecified IPS signatures, a different vulnerability than CVE-2008-1447.. EPSS estimates a 2.68% chance of exploitation in the next 30 days.

Description

The SERVICE.DNS signature engine in the Intrusion Prevention System (IPS) in Cisco IOS 12.3 and 12.4 allows remote attackers to cause a denial of service (device crash or hang) via network traffic that triggers unspecified IPS signatures, a different vulnerability than CVE-2008-1447.

Metrics

EPSS Probability

2.68%

83.9th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Cisco	Ios	12.3t
Cisco	Ios	12.3xl
Cisco	Ios	12.3xq
Cisco	Ios	12.3xr
Cisco	Ios	12.3xs
Cisco	Ios	12.3xx
Cisco	Ios	12.3ya
Cisco	Ios	12.3yd
Cisco	Ios	12.3yg
Cisco	Ios	12.3yh
Cisco	Ios	12.3yi
Cisco	Ios	12.3yk
Cisco	Ios	12.3ys
Cisco	Ios	12.3yt
Cisco	Ios	12.3za
Cisco	Ios	12.4xa
Cisco	Ios	12.4xc
Cisco	Ios	12.4xe
Cisco	Ios	12.4xf
Cisco	Ios	12.4xj
Cisco	Ios	12.4xk
Cisco	Ios	12.4xt
Cisco	Ios	12.4xv

References

http://secunia.com/advisories/31990Third Party Advisory
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01556.shtmlVendor Advisory
http://www.vupen.com/english/advisories/2008/2670Permissions Required, Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6058Broken Link
http://secunia.com/advisories/31990Third Party Advisory
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01556.shtmlVendor Advisory
http://www.vupen.com/english/advisories/2008/2670Permissions Required, Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6058Broken Link

Timeline

Published: Sep 26, 2008
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2008-2739?

How severe is CVE-2008-2739?

Severity scoring for CVE-2008-2739 is pending analysis. The EPSS model estimates a 2.68% probability of exploitation in the next 30 days.

How do I fix CVE-2008-2739?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2008-2739?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST