Sign-up

ID

VAR-200801-0241


CVE

CVE-2008-0263


TITLE

Ingate Firewall Such as SIP Service disruption in modules (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2008-003947

DESCRIPTION

The SIP module in Ingate Firewall before 4.6.1 and SIParator before 4.6.1 does not reuse SIP media ports in unspecified call hold and send-only stream scenarios, which allows remote attackers to cause a denial of service (port exhaustion) via unspecified vectors. Ingate Firewall and SIParator of SIP Module contains service disruption ( Port depletion ) There is a vulnerability that becomes a condition.Service disruption by a third party ( Port depletion ) There is a possibility of being put into a state. Ingate Firewall and SIParator products are prone to a remote denial-of-service vulnerability. Successful exploits allow remote attackers to consume all available network ports, which will cause the device to refuse further calls, thus denying service to legitimate users. Versions prior to Ingate Firewall 4.6.1 and Ingate SIParator 4.6.1 are vulnerable. Both Ingate Firewall and SIParator are enterprise-level hardware firewall devices. Vulnerabilities exist when Ingate Firewall and SIParator process SIP protocol data. ---------------------------------------------------------------------- A new version (0.9.0.0 - Release Candidate 1) of the free Secunia PSI has been released. The new version includes many new and advanced features, which makes it even easier to stay patched. Download and test it today: https://psi.secunia.com/ Read more about this new version: https://psi.secunia.com/?page=changelog ---------------------------------------------------------------------- TITLE: Ingate Firewall and SIParator Port Exhaustion Denial of Service SECUNIA ADVISORY ID: SA28394 VERIFY ADVISORY: http://secunia.com/advisories/28394/ CRITICAL: Moderately critical IMPACT: DoS WHERE: >From remote OPERATING SYSTEM: Ingate Firewall 4.x http://secunia.com/product/4050/ Ingate SIParator 4.x http://secunia.com/product/5687/ DESCRIPTION: Ingate has acknowledged a vulnerability in Ingate Firewall and SIParator, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error in the re-usage of media ports after a call has ended. This can be exploited to exhaust all available ports until no new calls can be established. Other versions may also be affected. Note: Other, potentially security relevant problems were also reported. SOLUTION: Update to version 4.6.1. PROVIDED AND/OR DISCOVERED BY: Reported by the vendor. ORIGINAL ADVISORY: http://www.ingate.com/relnote-461.php ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 2.07

sources: NVD: CVE-2008-0263 // JVNDB: JVNDB-2008-003947 // BID: 27222 // VULHUB: VHN-30388 // PACKETSTORM: 62491

AFFECTED PRODUCTS

vendor:ingatemodel:firewallscope:lteversion:4.6

Trust: 1.0

vendor:ingatemodel:siparatorscope:lteversion:4.6

Trust: 1.0

vendor:ingatemodel:siparatorscope:eqversion:4.6

Trust: 0.9

vendor:ingatemodel:firewallscope:eqversion:4.6

Trust: 0.9

vendor:ingatemodel:firewallscope:ltversion:4.6.1

Trust: 0.8

vendor:ingatemodel:siparatorscope:ltversion:4.6.1

Trust: 0.8

vendor:ingatemodel:siparatorscope:eqversion:4.5.2

Trust: 0.3

vendor:ingatemodel:siparatorscope:eqversion:4.5.1

Trust: 0.3

vendor:ingatemodel:siparatorscope:eqversion:4.4.1

Trust: 0.3

vendor:ingatemodel:siparatorscope:eqversion:4.3.4

Trust: 0.3

vendor:ingatemodel:siparatorscope:eqversion:4.3.3

Trust: 0.3

vendor:ingatemodel:siparatorscope:eqversion:4.3.2

Trust: 0.3

vendor:ingatemodel:siparatorscope:eqversion:4.3.1

Trust: 0.3

vendor:ingatemodel:siparatorscope:eqversion:4.3

Trust: 0.3

vendor:ingatemodel:siparatorscope:eqversion:4.2.3

Trust: 0.3

vendor:ingatemodel:siparatorscope:eqversion:4.2.2

Trust: 0.3

vendor:ingatemodel:siparatorscope:eqversion:4.2.1

Trust: 0.3

vendor:ingatemodel:siparatorscope:eqversion:3.3.1

Trust: 0.3

vendor:ingatemodel:siparatorscope:eqversion:3.2.1

Trust: 0.3

vendor:ingatemodel:siparatorscope:eqversion:3.2

Trust: 0.3

vendor:ingatemodel:siparatorscope:eqversion:4.4

Trust: 0.3

vendor:ingatemodel:firewallscope:eqversion:4.5.2

Trust: 0.3

vendor:ingatemodel:firewallscope:eqversion:4.5.1

Trust: 0.3

vendor:ingatemodel:firewallscope:eqversion:4.4.1

Trust: 0.3

vendor:ingatemodel:firewallscope:eqversion:4.3.4

Trust: 0.3

vendor:ingatemodel:firewallscope:eqversion:4.3.3

Trust: 0.3

vendor:ingatemodel:firewallscope:eqversion:4.3.2

Trust: 0.3

vendor:ingatemodel:firewallscope:eqversion:4.3.1

Trust: 0.3

vendor:ingatemodel:firewallscope:eqversion:4.3

Trust: 0.3

vendor:ingatemodel:firewallscope:eqversion:4.2.3

Trust: 0.3

vendor:ingatemodel:firewallscope:eqversion:4.2.2

Trust: 0.3

vendor:ingatemodel:firewallscope:eqversion:4.2.1

Trust: 0.3

vendor:ingatemodel:firewallscope:eqversion:4.1.3

Trust: 0.3

vendor:ingatemodel:firewallscope:eqversion:3.3.1

Trust: 0.3

vendor:ingatemodel:firewallscope:eqversion:3.2.1

Trust: 0.3

vendor:ingatemodel:firewallscope:eqversion:3.2

Trust: 0.3

vendor:ingatemodel:siparatorscope:neversion:4.6.1

Trust: 0.3

vendor:ingatemodel:firewallscope:neversion:4.6.1

Trust: 0.3

sources: BID: 27222 // JVNDB: JVNDB-2008-003947 // CNNVD: CNNVD-200801-234 // NVD: CVE-2008-0263

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2008-0263
value: MEDIUM

Trust: 1.0

NVD: CVE-2008-0263
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-200801-234
value: MEDIUM

Trust: 0.6

VULHUB: VHN-30388
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2008-0263
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-30388
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-30388 // JVNDB: JVNDB-2008-003947 // CNNVD: CNNVD-200801-234 // NVD: CVE-2008-0263

PROBLEMTYPE DATA

problemtype:CWE-399

Trust: 1.9

sources: VULHUB: VHN-30388 // JVNDB: JVNDB-2008-003947 // NVD: CVE-2008-0263

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200801-234

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-200801-234

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2008-003947

PATCH
title:Ingate Firewallurl:http://www.ingate.com/firewalls.php
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2008-003947

EXTERNAL IDS
db:NVDid:CVE-2008-0263
Trust: 2.8
db:BIDid:27222
Trust: 2.0
db:SECUNIAid:28394
Trust: 1.8
db:SECTRACKid:1019176
Trust: 1.7
db:SECTRACKid:1019177
Trust: 1.7
db:VUPENid:ADV-2008-0108
Trust: 1.7
db:OSVDBid:40365
Trust: 1.7
db:JVNDBid:JVNDB-2008-003947
Trust: 0.8
db:NSFOCUSid:11375
Trust: 0.6
db:CNNVDid:CNNVD-200801-234
Trust: 0.6
db:VULHUBid:VHN-30388
Trust: 0.1
db:PACKETSTORMid:62491
Trust: 0.1
sources:
            
            
            VULHUB: VHN-30388 // 
            
            
            
            BID: 27222 // 
            
            
            
            JVNDB: JVNDB-2008-003947 // 
            
            
            
            PACKETSTORM: 62491 // 
            
            
            
            CNNVD: CNNVD-200801-234 // 
            
            
            
            NVD: CVE-2008-0263

REFERENCES
url:http://www.ingate.com/relnote-461.php
Trust: 2.1
url:http://www.securityfocus.com/bid/27222
Trust: 1.7
url:http://osvdb.org/40365
Trust: 1.7
url:http://www.securitytracker.com/id?1019176
Trust: 1.7
url:http://www.securitytracker.com/id?1019177
Trust: 1.7
url:http://secunia.com/advisories/28394
Trust: 1.7
url:http://www.vupen.com/english/advisories/2008/0108
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-0263
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2008-0263
Trust: 0.8
url:http://www.frsirt.com/english/advisories/2008/0108
Trust: 0.6
url:http://www.nsfocus.net/vulndb/11375
Trust: 0.6
url:http://www.ingate.com/
Trust: 0.3
url:http://secunia.com/secunia_security_advisories/
Trust: 0.1
url:https://psi.secunia.com/?page=changelog
Trust: 0.1
url:https://psi.secunia.com/
Trust: 0.1
url:http://secunia.com/product/4050/
Trust: 0.1
url:http://secunia.com/product/5687/
Trust: 0.1
url:http://secunia.com/advisories/28394/
Trust: 0.1
url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Trust: 0.1
url:http://secunia.com/about_secunia_advisories/
Trust: 0.1
sources:
            
            
            VULHUB: VHN-30388 // 
            
            
            
            BID: 27222 // 
            
            
            
            JVNDB: JVNDB-2008-003947 // 
            
            
            
            PACKETSTORM: 62491 // 
            
            
            
            CNNVD: CNNVD-200801-234 // 
            
            
            
            NVD: CVE-2008-0263

CREDITS
Ingate Systems
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-200801-234

SOURCES
db:VULHUBid:VHN-30388
db:BIDid:27222
db:JVNDBid:JVNDB-2008-003947
db:PACKETSTORMid:62491
db:CNNVDid:CNNVD-200801-234
db:NVDid:CVE-2008-0263

LAST UPDATE DATE
2024-11-23T22:09:42.649000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-30388date:2011-03-08T00:00:00
db:BIDid:27222date:2015-05-07T17:33:00
db:JVNDBid:JVNDB-2008-003947date:2012-09-25T00:00:00
db:CNNVDid:CNNVD-200801-234date:2008-11-15T00:00:00
db:NVDid:CVE-2008-0263date:2024-11-21T00:41:32.087

SOURCES RELEASE DATE
db:VULHUBid:VHN-30388date:2008-01-15T00:00:00
db:BIDid:27222date:2008-01-10T00:00:00
db:JVNDBid:JVNDB-2008-003947date:2012-09-25T00:00:00
db:PACKETSTORMid:62491date:2008-01-10T22:33:57
db:CNNVDid:CNNVD-200801-234date:2008-01-15T00:00:00
db:NVDid:CVE-2008-0263date:2008-01-15T20:00:00