Unrated severityNVD Advisory· Published Mar 27, 2008· Updated Apr 23, 2026

CVE-2008-1156

Description

Unspecified vulnerability in the Multicast Virtual Private Network (MVPN) implementation in Cisco IOS 12.0, 12.2, 12.3, and 12.4 allows remote attackers to create "extra multicast states on the core routers" via a crafted Multicast Distribution Tree (MDT) Data Join message.

Affected products

Cisco Systems, Inc./Cisco iOS4 versions
cpe:2.3:o:cisco:cisco_ios:12.3:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:cisco:cisco_ios:12.3:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cisco_ios:12.4:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:12.0:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cisco.com/warp/public/707/cisco-sa-20080326-mvpn.shtmlnvdPatch
www.us-cert.gov/cas/techalerts/TA08-087B.htmlnvdUS Government Resource
secunia.com/advisories/29507nvd
www.securityfocus.com/bid/28464nvd
www.securitytracker.com/idnvd
www.vupen.com/english/advisories/2008/1006/referencesnvd
exchange.xforce.ibmcloud.com/vulnerabilities/41468nvd
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5648nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000